594b6fc5ffe9608371a2853db4a54d89d5bef4294680bfd835fa05b20f575b17 | Triage

Submit
Reports

Overview

overview

Static

static

PO VASE.xlsx

windows7_x64

PO VASE.xlsx

windows10_x64

1

PO VASE.xlsx

macos_amd64

1

Analysis

max time network
151s
platform
macos_amd64
resource
macos
submitted
22-07-2021 09:15

Sharing

Static task

static1

Behavioral task

behavioral1

Sample

PO VASE.xlsx

Resource

win7v20210408

agenttesla keylogger spyware stealer trojan

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

PO VASE.xlsx

Resource

win10v20210410

windows10_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

PO VASE.xlsx

Resource

macos

macos_amd64

0 signatures

0 seconds

Report Analysis Logs

General

Target

PO VASE.xlsx
Size

1.3MB
MD5

08bfe97addcfdc8ea68d56a80a16621a
SHA1

2111b3ffb8b32bad9d341848bdab6688e280a222
SHA256

594b6fc5ffe9608371a2853db4a54d89d5bef4294680bfd835fa05b20f575b17
SHA512

f17cc20e7884ef6b1d446feeb35f65129ec4cfd3a86208c7b639d9b3d1ac36d51b92c5aa9ed31d20f20ea61b895aa071ed8755752581620e110087f36171cd91

Score

1^/10

Malware Config

Signatures

Processes

/bin/sh
sh -c "sudo /Users/run/PO VASE.xlsx"
1⤵
PID:481

/bin/bash
sh -c "sudo /Users/run/PO VASE.xlsx"
1⤵
PID:481

/usr/bin/sudo
sudo /Users/run/PO VASE.xlsx
1⤵
PID:481

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/private/var/db/sudo/ts/run
MD5
d740c7f7d6f747cedb3dbeb89b1cc502

SHA1
b7d9eed3db7db166a1d8a556473aa55a41e442d8

SHA256
5f948c54fec72a4a6d0207902116d3d32815a92d16d1843b9aec9a1c212c3889

SHA512
c9f67eebc3859cdc57b287972814129e969f3b84149bb1dd58e75dedcb7e548492bd66095c173879316b3ed6d6d1cf954e66b10e440dc64c3b47d796a2e5b4e5

Download Submit

© 2018-2024

Terms | Privacy