8ef3a66715c5224d804d23dbbd9013304a860c6ed346eedc27d73aee31e9b9ea | Triage

Submit
Reports

Overview

overview

Static

static

8

Invoice Report.xlsm

windows7_x64

Invoice Report.xlsm

windows10_x64

Sharing

General

Target

Invoice Report.xlsm
Size

140KB
Sample

210721-v4zkaey726
MD5

329c98470c9b2ac55b27ec305a51ed8b
SHA1

6ae68c825f75e57b0ba370f12d90a5e6b65fd6d1
SHA256

8ef3a66715c5224d804d23dbbd9013304a860c6ed346eedc27d73aee31e9b9ea
SHA512

17ecd183f96dd9689c75c3d8682a4ce346b666e50964820da9c4fda0fd8c1e7a96f6649edb02de554cee01ba29eb4a221a804f285895a0d7f57723e34827c0f0

Score

10^/10

macro xlm

Static task

static1

Behavioral task

behavioral1

Sample

Invoice Report.xlsm

Resource

win7v20210410

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

Invoice Report.xlsm

Resource

win10v20210408

windows10_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  Invoice Report.xlsm
- Size
  
  140KB
- MD5
  
  329c98470c9b2ac55b27ec305a51ed8b
- SHA1
  
  6ae68c825f75e57b0ba370f12d90a5e6b65fd6d1
- SHA256
  
  8ef3a66715c5224d804d23dbbd9013304a860c6ed346eedc27d73aee31e9b9ea
- SHA512
  
  17ecd183f96dd9689c75c3d8682a4ce346b666e50964820da9c4fda0fd8c1e7a96f6649edb02de554cee01ba29eb4a221a804f285895a0d7f57723e34827c0f0
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy