82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257 | Triage

Submit
Reports

Overview

overview

Static

static

8

82d0b5b83d...57.xls

windows7_x64

82d0b5b83d...57.xls

windows10_x64

Sharing

General

Target

82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257
Size

54KB
Sample

210114-pj5bdqdcfn
MD5

12ff01a186adb0427ed0683831d3f7a1
SHA1

d0ce240201c8ba8442e7fafc35f2ee4aa180682d
SHA256

82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257
SHA512

235312cf6c84a85ed91ea4246a3e181ec3151a3857845d8a5b579ed62074554697e1251e8b1f44151ad11cc85942f79e195a5bf7145fa8cbe96c4a3b01e05ae2

Score

10^/10

macro xlm

Static task

static1

Behavioral task

behavioral1

Sample

82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257.xls

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257.xls

Resource

win10v20201028

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Language

xlm4.0

Source

Targets

- Target
  
  82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257
- Size
  
  54KB
- MD5
  
  12ff01a186adb0427ed0683831d3f7a1
- SHA1
  
  d0ce240201c8ba8442e7fafc35f2ee4aa180682d
- SHA256
  
  82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257
- SHA512
  
  235312cf6c84a85ed91ea4246a3e181ec3151a3857845d8a5b579ed62074554697e1251e8b1f44151ad11cc85942f79e195a5bf7145fa8cbe96c4a3b01e05ae2
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy