General
-
Target
40a9c9d58668a1d0d73a144c0b52978e94fb01859927ffbe83acbeb7d13f530d.xls
-
Size
95KB
-
Sample
220707-dhtwfaede7
-
MD5
23fa92d137bcc0ebabd4b4bae26b5969
-
SHA1
cd7f49a7a54a9e7a21d875a15128fd252a5e9854
-
SHA256
40a9c9d58668a1d0d73a144c0b52978e94fb01859927ffbe83acbeb7d13f530d
-
SHA512
0b32be14afd579dc2896ffcf0d121cd9eb7eb8cf6241c33547e6b7e65d68d9258afcbed592cc9c74c59d606c2c95d3a8fb188c1e7752450ad32103699b55c943
Behavioral task
behavioral1
Sample
40a9c9d58668a1d0d73a144c0b52978e94fb01859927ffbe83acbeb7d13f530d.xls
Resource
win10-20220414-en
Behavioral task
behavioral2
Sample
40a9c9d58668a1d0d73a144c0b52978e94fb01859927ffbe83acbeb7d13f530d.xls
Resource
win10-20220414-en
Malware Config
Extracted
https://edoraseguros.com.br/cgi-bin/jQNq9wlH1GXU/
http://earthmach.co.za/libraries/tWkZh9YrXbTd6IeX/
http://finvest.rs/wp-admin/Hr9nVNTIHgw59S/
http://efverstedt.se/5jjaV/w7fLEHJ20xn0qD/
Extracted
https://edoraseguros.com.br/cgi-bin/jQNq9wlH1GXU/
Targets
-
-
Target
40a9c9d58668a1d0d73a144c0b52978e94fb01859927ffbe83acbeb7d13f530d.xls
-
Size
95KB
-
MD5
23fa92d137bcc0ebabd4b4bae26b5969
-
SHA1
cd7f49a7a54a9e7a21d875a15128fd252a5e9854
-
SHA256
40a9c9d58668a1d0d73a144c0b52978e94fb01859927ffbe83acbeb7d13f530d
-
SHA512
0b32be14afd579dc2896ffcf0d121cd9eb7eb8cf6241c33547e6b7e65d68d9258afcbed592cc9c74c59d606c2c95d3a8fb188c1e7752450ad32103699b55c943
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-