af719445dbb43a23251509a6bf0f3dd640e1da70d288038917e238c9af53d789 | Triage

Submit
Reports

Overview

overview

Static

static

af719445db...9.xlsx

windows7-x64

af719445db...9.xlsx

windows10-2004-x64

1

Sharing

General

Target

af719445dbb43a23251509a6bf0f3dd640e1da70d288038917e238c9af53d789
Size

25KB
Sample

220724-2ecdzsbafp
MD5

7901c7e9aca1dc16ff0bd0631fbaaa53
SHA1

f166d0c7c972e41a41a305159dda341bfaa8e129
SHA256

af719445dbb43a23251509a6bf0f3dd640e1da70d288038917e238c9af53d789
SHA512

5ed169ea1693038f2c9228f21258311f808ed4d81a823814a42d06cb5e499e02e4ab596bbd9e5d549046dbaf3feba6a64f1b4640e2c8cb235751d26e7e8c8e34

Score

10^/10

suricata

Static task

static1

Behavioral task

behavioral1

Sample

af719445dbb43a23251509a6bf0f3dd640e1da70d288038917e238c9af53d789.xlsx

Resource

win7-20220715-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

af719445dbb43a23251509a6bf0f3dd640e1da70d288038917e238c9af53d789.xlsx

Resource

win10v2004-20220721-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  af719445dbb43a23251509a6bf0f3dd640e1da70d288038917e238c9af53d789
- Size
  
  25KB
- MD5
  
  7901c7e9aca1dc16ff0bd0631fbaaa53
- SHA1
  
  f166d0c7c972e41a41a305159dda341bfaa8e129
- SHA256
  
  af719445dbb43a23251509a6bf0f3dd640e1da70d288038917e238c9af53d789
- SHA512
  
  5ed169ea1693038f2c9228f21258311f808ed4d81a823814a42d06cb5e499e02e4ab596bbd9e5d549046dbaf3feba6a64f1b4640e2c8cb235751d26e7e8c8e34
Score

10^/10

suricata
- suricata: ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious
  suricata: ET MALWARE EXE Download Request To Wordpress Folder Likely Malicious
  suricata
- suricata: ET MALWARE Possible Malicious Macro DL EXE Feb 2016
  suricata: ET MALWARE Possible Malicious Macro DL EXE Feb 2016
  suricata
- suricata: ET MALWARE Possible Malicious Macro EXE DL AlphaNumL
  suricata: ET MALWARE Possible Malicious Macro EXE DL AlphaNumL
  suricata
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy