General
-
Target
SecuriteInfo.com.Heur.32597.10604
-
Size
280KB
-
Sample
210504-czzksjcbma
-
MD5
9646c9d32cec09ab37b67d393aaa6312
-
SHA1
c4f45533795bcd7e3a1e7a28f3700b826356c981
-
SHA256
6554bb875518a3f98aca2f086217a5fc86778c3e90132f4e1f0fec6000ba3103
-
SHA512
2c9a3379879769e62c32581574b60f5e1c4b052ff8d77d583f597031df8771a9a4b65a72df600daf845c9938b5b7a71b47fe58dbfe6918b6ac520da4e9b804d1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Heur.32597.10604.xls
Resource
win7v20210410
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Heur.32597.10604.xls
Resource
win10v20210408
Malware Config
Extracted
https://deluciaspizza.com/netmouser.dll
Targets
-
-
Target
SecuriteInfo.com.Heur.32597.10604
-
Size
280KB
-
MD5
9646c9d32cec09ab37b67d393aaa6312
-
SHA1
c4f45533795bcd7e3a1e7a28f3700b826356c981
-
SHA256
6554bb875518a3f98aca2f086217a5fc86778c3e90132f4e1f0fec6000ba3103
-
SHA512
2c9a3379879769e62c32581574b60f5e1c4b052ff8d77d583f597031df8771a9a4b65a72df600daf845c9938b5b7a71b47fe58dbfe6918b6ac520da4e9b804d1
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-