Overview

overview

8

Static

static

Simeco S.p.A.xls

windows7-x64

8

Simeco S.p.A.xls

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Simeco S.p.A.xls

  • Size

    285KB

  • Sample

    221027-ntfhasbhh8

  • MD5

    f911620da03d1a0823802a62ea14dd05

  • SHA1

    fc04fde755435abe408394e615d0826b341f217e

  • SHA256

    d3a83e36983a73c189d4c13431e71d468295ff3f3d7147b5e3122c42f18fa932

  • SHA512

    fad1cd84233939136768d69c82b22598dc9b54e9616c7c3051dc15b32238ae7cf7b3d1cf54ec8171d9dc83bb6c6213af51bd67406cd57238b1deb12fef2acf2d

  • SSDEEP

    6144:X3TmryppSyi3Fj23sx4wBnZ6kjAuO/sOTF8b2ED1+2vv8nKudv:nTmrypQyMRfxbnZ6kj6/L6ZDnluN

Score
8/10

Malware Config

Targets

    • Target

      Simeco S.p.A.xls

    • Size

      285KB

    • MD5

      f911620da03d1a0823802a62ea14dd05

    • SHA1

      fc04fde755435abe408394e615d0826b341f217e

    • SHA256

      d3a83e36983a73c189d4c13431e71d468295ff3f3d7147b5e3122c42f18fa932

    • SHA512

      fad1cd84233939136768d69c82b22598dc9b54e9616c7c3051dc15b32238ae7cf7b3d1cf54ec8171d9dc83bb6c6213af51bd67406cd57238b1deb12fef2acf2d

    • SSDEEP

      6144:X3TmryppSyi3Fj23sx4wBnZ6kjAuO/sOTF8b2ED1+2vv8nKudv:nTmrypQyMRfxbnZ6kj6/L6ZDnluN

    Score
    8/10

    • Blocklisted process makes network request

    • Downloads MZ/PE file

    • Executes dropped EXE

    • Loads dropped DLL

    • Uses the VBS compiler for execution

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks