Overview

overview

10

Static

static

8

cancel_sub...6.xlsb

windows7_x64

10

cancel_sub...6.xlsb

windows10_x64

1

Analysis

  • max time kernel
    27s
  • max time network
    141s
  • platform
    windows10_x64
  • resource
    win10v20210408
  • submitted
    18-05-2021 19:12

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cancel_sub_JPL82173418839376.xlsb

  • Size

    264KB

  • MD5

    f1b51acf675dd0973ce3ec78fd9a1859

  • SHA1

    83e8858f1d6a849151289a7c507a740d59e5da79

  • SHA256

    7c2dae7cfc7b469c26b14d5cf7aed0e063ab8f854c7563d1e7fca448e6827a05

  • SHA512

    9ce754214b348348fbdbdc933a61c9f01646f8021769c1c683fe1eb7d5af59e22950226233244cd7f304944164b46a55d708a668e01cf115085466357b766b43

Score
1/10

Malware Config

Signatures

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\cancel_sub_JPL82173418839376.xlsb"
    1⤵
      PID:2544

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2544-114-0x00007FF664080000-0x00007FF667636000-memory.dmp
      Filesize

      53.7MB

      Download
    • memory/2544-115-0x00007FFA70CE0000-0x00007FFA70CF0000-memory.dmp
      Filesize

      64KB

      Download
    • memory/2544-116-0x00007FFA70CE0000-0x00007FFA70CF0000-memory.dmp
      Filesize

      64KB

      Download
    • memory/2544-117-0x00007FFA70CE0000-0x00007FFA70CF0000-memory.dmp
      Filesize

      64KB

      Download
    • memory/2544-118-0x00007FFA70CE0000-0x00007FFA70CF0000-memory.dmp
      Filesize

      64KB

      Download
    • memory/2544-121-0x00007FFA70CE0000-0x00007FFA70CF0000-memory.dmp
      Filesize

      64KB

      Download
    • memory/2544-122-0x00007FFA91890000-0x00007FFA9297E000-memory.dmp
      Filesize

      16.9MB

      Download
    • memory/2544-123-0x00007FFA8F990000-0x00007FFA91885000-memory.dmp
      Filesize

      31.0MB

      Download