Analysis
-
max time kernel
4s -
max time network
19s -
platform
windows10_x64 -
resource
win10-en-20210920 -
submitted
22-10-2021 18:18
General
-
Target
Payment_Advise.xlsx
-
Size
360KB
-
MD5
34f843f6f1b3011a7cdb63753853ef58
-
SHA1
922ebd64f7ffe9d8548d467b631f6bdf2ede6106
-
SHA256
fbdb8f368721ccfea456f2e6f232304acff371bdb62a5140b9fc44bd224e0d57
-
SHA512
ad644134a1af636fc794b49bd35fecd5c3dc778a3a2d2503b3cb3285da43c26b9e133f0ba6bc7f049032ab395e3e0d41bd371ab30b5ef18515b7390c39f7be73
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: AddClipboardFormatListener 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE"C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\Payment_Advise.xlsx"1⤵
- Suspicious behavior: AddClipboardFormatListener
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
memory/4032-115-0x00007FF963030000-0x00007FF963040000-memory.dmpFilesize
64KB
-
memory/4032-116-0x00007FF963030000-0x00007FF963040000-memory.dmpFilesize
64KB
-
memory/4032-117-0x00007FF963030000-0x00007FF963040000-memory.dmpFilesize
64KB
-
memory/4032-118-0x00007FF963030000-0x00007FF963040000-memory.dmpFilesize
64KB
-
memory/4032-119-0x000001E5F5440000-0x000001E5F5442000-memory.dmpFilesize
8KB
-
memory/4032-120-0x000001E5F5440000-0x000001E5F5442000-memory.dmpFilesize
8KB
-
memory/4032-121-0x00007FF963030000-0x00007FF963040000-memory.dmpFilesize
64KB
-
memory/4032-122-0x000001E5F5440000-0x000001E5F5442000-memory.dmpFilesize
8KB