General
-
Target
CompensationClaim_535312269_03152021.xls
-
Size
233KB
-
Sample
210315-ty5fb7bxx2
-
MD5
7386ba3954abeb94678392a70eadf006
-
SHA1
eac177926fe173417b9360d680a0971e35f0763c
-
SHA256
6fef8f8889696624dbd6251d11c9c42ea7618b69ec80b865f780d1981abb6ead
-
SHA512
8e3ce4add0d22732fe9b325958d58727846240f5888f90b51f4d76e615d2d8f4ff601d2ab686acb9c6d2648fa77d5e2bde45fdb3297452218af607b5e45b6c17
Behavioral task
behavioral1
Sample
CompensationClaim_535312269_03152021.xls
Resource
win7v20201028
Behavioral task
behavioral2
Sample
CompensationClaim_535312269_03152021.xls
Resource
win10v20201028
Malware Config
Extracted
http://188.127.254.114/44270.7357631944.dat
http://185.82.219.160/44270.7357631944.dat
http://45.140.146.34/44270.7357631944.dat
Targets
-
-
Target
CompensationClaim_535312269_03152021.xls
-
Size
233KB
-
MD5
7386ba3954abeb94678392a70eadf006
-
SHA1
eac177926fe173417b9360d680a0971e35f0763c
-
SHA256
6fef8f8889696624dbd6251d11c9c42ea7618b69ec80b865f780d1981abb6ead
-
SHA512
8e3ce4add0d22732fe9b325958d58727846240f5888f90b51f4d76e615d2d8f4ff601d2ab686acb9c6d2648fa77d5e2bde45fdb3297452218af607b5e45b6c17
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-