Overview

overview

10

Static

static

8

efa477c802...41.xls

windows7-x64

10

efa477c802...41.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    efa477c8023bff12885822674cd827772eebf0a1e34a1b84e100b17f5455fc41

  • Size

    97KB

  • Sample

    221119-31m82sbd8y

  • MD5

    4f3c5e432d6810be080b9a16a22a3170

  • SHA1

    49046a0b678fbc1505e670b92bd86a880b89e925

  • SHA256

    efa477c8023bff12885822674cd827772eebf0a1e34a1b84e100b17f5455fc41

  • SHA512

    96bc1b49942939c418d747ef5ed853ab7627d908459fe0e770033f080750a1ec90f96a137aa57131e68066f233280c7f83ca40fd42f78d48bbfaac1dc222a345

  • SSDEEP

    1536:IRRRdNRIUmyT4H4aw2jcc0lbxOvTgZaRfrbWWt2XKGyRI:y2jcc0lbxOr/jqaBa

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      efa477c8023bff12885822674cd827772eebf0a1e34a1b84e100b17f5455fc41

    • Size

      97KB

    • MD5

      4f3c5e432d6810be080b9a16a22a3170

    • SHA1

      49046a0b678fbc1505e670b92bd86a880b89e925

    • SHA256

      efa477c8023bff12885822674cd827772eebf0a1e34a1b84e100b17f5455fc41

    • SHA512

      96bc1b49942939c418d747ef5ed853ab7627d908459fe0e770033f080750a1ec90f96a137aa57131e68066f233280c7f83ca40fd42f78d48bbfaac1dc222a345

    • SSDEEP

      1536:IRRRdNRIUmyT4H4aw2jcc0lbxOvTgZaRfrbWWt2XKGyRI:y2jcc0lbxOr/jqaBa

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks