82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257 | Triage

Submit
Reports

Overview

overview

Static

static

8

82d0b5b83d...57.xls

windows7_x64

82d0b5b83d...57.xls

windows10_x64

Sharing

General

Target

82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257
Size

54KB
Sample

210114-pj5bdqdcfn
MD5

12ff01a186adb0427ed0683831d3f7a1
SHA1

d0ce240201c8ba8442e7fafc35f2ee4aa180682d
SHA256

82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257
SHA512

235312cf6c84a85ed91ea4246a3e181ec3151a3857845d8a5b579ed62074554697e1251e8b1f44151ad11cc85942f79e195a5bf7145fa8cbe96c4a3b01e05ae2

Score

10^/10

macro xlm

Static task

static1

Behavioral task

behavioral1

Sample

82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257.xls

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257.xls

Resource

win10v20201028

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Language

xlm4.0

Source

Targets

- Target
  
  82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257
- Size
  
  54KB
- MD5
  
  12ff01a186adb0427ed0683831d3f7a1
- SHA1
  
  d0ce240201c8ba8442e7fafc35f2ee4aa180682d
- SHA256
  
  82d0b5b83d9fa55b57bdcd92f636e48ac7c44303a366be96279d6402bab34257
- SHA512
  
  235312cf6c84a85ed91ea4246a3e181ec3151a3857845d8a5b579ed62074554697e1251e8b1f44151ad11cc85942f79e195a5bf7145fa8cbe96c4a3b01e05ae2
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy