5a11b806245bbcf538179ea2805929db01e9df9fc792e577ebe0b1c4694e9a32 | Triage

Submit
Reports

Overview

overview

Static

static

8

637157-211...7.xlsm

windows7_x64

637157-211...7.xlsm

windows10_x64

Sharing

General

Target

637157-211036-853667.xlsm
Size

140KB
Sample

210721-3nvzbefqje
MD5

a1fc90a0d2d73cb38e96158308a4d984
SHA1

711c9d1bbc54f1b217fd1816c78b6979e5c52128
SHA256

5a11b806245bbcf538179ea2805929db01e9df9fc792e577ebe0b1c4694e9a32
SHA512

58ee83e1efd6171325d9c5d88f18a8492161d7f767e7c0f90d5315f1ac844598ce4d5e0048ecbdc561f3492f8f0044e733f029cd218b1661f909d1a9641db7d4

Score

10^/10

macro xlm

Static task

static1

Behavioral task

behavioral1

Sample

637157-211036-853667.xlsm

Resource

win7v20210410

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

637157-211036-853667.xlsm

Resource

win10v20210408

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  637157-211036-853667.xlsm
- Size
  
  140KB
- MD5
  
  a1fc90a0d2d73cb38e96158308a4d984
- SHA1
  
  711c9d1bbc54f1b217fd1816c78b6979e5c52128
- SHA256
  
  5a11b806245bbcf538179ea2805929db01e9df9fc792e577ebe0b1c4694e9a32
- SHA512
  
  58ee83e1efd6171325d9c5d88f18a8492161d7f767e7c0f90d5315f1ac844598ce4d5e0048ecbdc561f3492f8f0044e733f029cd218b1661f909d1a9641db7d4
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy