Overview

overview

10

Static

static

8

f6dd8a939a...cd.xls

windows7-x64

10

f6dd8a939a...cd.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f6dd8a939ad1ddc046603d28592e75e5d6b5442a2bcc7623a66d53ddbe5484cd

  • Size

    96KB

  • Sample

    221118-23l84acb25

  • MD5

    17661a37f7de7beab087880040f1ebcd

  • SHA1

    7052641ae466d1079477a27c2366b9932077f648

  • SHA256

    f6dd8a939ad1ddc046603d28592e75e5d6b5442a2bcc7623a66d53ddbe5484cd

  • SHA512

    1335cdca4784f098a2b879c40aa87671f4e2270258647d76ee8ce10e7ba102a4272b61520766699ffe127a24d5d53a3f300d1dda1b0d90d3767fb7b99d56727b

  • SSDEEP

    1536:xRRRTtR4sk9CdVrER9m3GtKWKIZ95fvjupWVbrzQ7ITkPYlNA23yM88zcJtXwP/z:CKvWVbrzQ7ITk6HjIJtXw3z

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      f6dd8a939ad1ddc046603d28592e75e5d6b5442a2bcc7623a66d53ddbe5484cd

    • Size

      96KB

    • MD5

      17661a37f7de7beab087880040f1ebcd

    • SHA1

      7052641ae466d1079477a27c2366b9932077f648

    • SHA256

      f6dd8a939ad1ddc046603d28592e75e5d6b5442a2bcc7623a66d53ddbe5484cd

    • SHA512

      1335cdca4784f098a2b879c40aa87671f4e2270258647d76ee8ce10e7ba102a4272b61520766699ffe127a24d5d53a3f300d1dda1b0d90d3767fb7b99d56727b

    • SSDEEP

      1536:xRRRTtR4sk9CdVrER9m3GtKWKIZ95fvjupWVbrzQ7ITkPYlNA23yM88zcJtXwP/z:CKvWVbrzQ7ITk6HjIJtXw3z

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks