Overview

overview

8

Static

static

8

NonVBA_EvilClippy.xls

windows7-x64

1

NonVBA_EvilClippy.xls

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    NonVBA_EvilClippy.xls

  • Size

    100KB

  • Sample

    220815-h69n1sfhcl

  • MD5

    5099f03f54b9d67a98422de8a62d60e7

  • SHA1

    d9132f2c3208b3d1dfadfa6765f473477452a7fb

  • SHA256

    15eadb2084916e52c48f9bc8e4166e613c8cc03843915dcc200a42ed0469f817

  • SHA512

    c2dce823fa9c58d09a0e1077ab015a4debe0a16364beacc1f867fc103693ece1e067d9eb822457a6da22afd7e65e69684a7957fd5b2219915cfa3196376b0154

Score
8/10
macromacro_on_action

Malware Config

Targets

    • Target

      NonVBA_EvilClippy.xls

    • Size

      100KB

    • MD5

      5099f03f54b9d67a98422de8a62d60e7

    • SHA1

      d9132f2c3208b3d1dfadfa6765f473477452a7fb

    • SHA256

      15eadb2084916e52c48f9bc8e4166e613c8cc03843915dcc200a42ed0469f817

    • SHA512

      c2dce823fa9c58d09a0e1077ab015a4debe0a16364beacc1f867fc103693ece1e067d9eb822457a6da22afd7e65e69684a7957fd5b2219915cfa3196376b0154

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks