General
-
Target
SecuriteInfo.com.Exploit.Siggen3.17232.29868.20236
-
Size
33KB
-
Sample
220816-jldlhshab6
-
MD5
90512b064db1da60fb41f392c8cbb762
-
SHA1
9cd8187d0b2b1f7c8f0ce349ea2e49cbcbc41620
-
SHA256
e46d810b92a54d8b1b0041ccda70476999d5c6e59398727cac8b83bd3fe4d9a6
-
SHA512
1c34ce983821ed368251b48174867d663e9b1596d39d763efa0caa1b08d07eea78533d4e17755b4abf0a16047822f90b80834f0faf800cc62669fae01257ae6e
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Exploit.Siggen3.17232.29868.xls
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Exploit.Siggen3.17232.29868.xls
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Exploit.Siggen3.17232.29868.20236
-
Size
33KB
-
MD5
90512b064db1da60fb41f392c8cbb762
-
SHA1
9cd8187d0b2b1f7c8f0ce349ea2e49cbcbc41620
-
SHA256
e46d810b92a54d8b1b0041ccda70476999d5c6e59398727cac8b83bd3fe4d9a6
-
SHA512
1c34ce983821ed368251b48174867d663e9b1596d39d763efa0caa1b08d07eea78533d4e17755b4abf0a16047822f90b80834f0faf800cc62669fae01257ae6e
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Blocklisted process makes network request
-