General
-
Target
Complaint-Letter-1973823858-03102021.xls
-
Size
276KB
-
Sample
210312-vtpbcctjv6
-
MD5
8432ec3b0604d96a7ec137b80ac050a2
-
SHA1
63dfe8269e0451a0a54d91706d85132f50188ea0
-
SHA256
fc8bbe7b84a60771d654fb9efd2cc848e3f3ffe72ce3bb395326d9a15fbd1f59
-
SHA512
91f744e0d9e34c0f5adfd88e405f18e180f469e6da457efaea80c841dfaf7f231886c785aa12033c014aba0b418c5fbf74929de1efed73df3a5a72ccedf640b3
Malware Config
Extracted
http://vasprogramer.com/xcuaqrfwpaf/44267.6477175926.dat
http://mboard.baydevelopments.com/tkihlgt/44267.6477175926.dat
http://porcarabanchel.es/kgbpstokjetx/44267.6477175926.dat
http://klickprints.com/jcqywmbz/44267.6477175926.dat
http://werkplaats1.okker.nl/jiejgtgde/44267.6477175926.dat
Targets
-
-
Target
Complaint-Letter-1973823858-03102021.xls
-
Size
276KB
-
MD5
8432ec3b0604d96a7ec137b80ac050a2
-
SHA1
63dfe8269e0451a0a54d91706d85132f50188ea0
-
SHA256
fc8bbe7b84a60771d654fb9efd2cc848e3f3ffe72ce3bb395326d9a15fbd1f59
-
SHA512
91f744e0d9e34c0f5adfd88e405f18e180f469e6da457efaea80c841dfaf7f231886c785aa12033c014aba0b418c5fbf74929de1efed73df3a5a72ccedf640b3
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-