b82d2b0e5100db95cc6cfb9e88d42e4141bb7da4836d0ba7733b30e9bbc4e47d | Triage

Submit
Reports

Overview

overview

Static

static

8

Internet-Win7-30min

windows7_x64

Sharing

General

Target

0224_80188103030762.doc
Size

342KB
Sample

210224-fpf93eer3x
MD5

7fc5aa5b2e8ce00bb672ad56a71651c0
SHA1

2f51502b91b341cd7d0796d6abcc859658efbcfa
SHA256

b82d2b0e5100db95cc6cfb9e88d42e4141bb7da4836d0ba7733b30e9bbc4e47d
SHA512

233fe8fbcf2e3d88d353d0aa8a3387904b86f4e064d303aef11ca7b22a84cec308b8d27f8adc19580a080414e4148138495b3a32658ab9f0c106df41e2e68ea1

Score

10^/10

macro macro_on_action xlm

Static task

static1

macro xlm macro_on_action

Behavioral task

behavioral1

Sample

0224_80188103030762.doc

Resource

win7v20201028

windows7_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  0224_80188103030762.doc
- Size
  
  342KB
- MD5
  
  7fc5aa5b2e8ce00bb672ad56a71651c0
- SHA1
  
  2f51502b91b341cd7d0796d6abcc859658efbcfa
- SHA256
  
  b82d2b0e5100db95cc6cfb9e88d42e4141bb7da4836d0ba7733b30e9bbc4e47d
- SHA512
  
  233fe8fbcf2e3d88d353d0aa8a3387904b86f4e064d303aef11ca7b22a84cec308b8d27f8adc19580a080414e4148138495b3a32658ab9f0c106df41e2e68ea1
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
behavioral1

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

macroxlmmacro_on_action

behavioral1

© 2018-2024

Terms | Privacy