9d5e6067c0e410d07db36fc7aad8f4c704595da58f2ab6ed5eab6360bcab4268 | Triage

Submit
Reports

Overview

overview

Static

static

8

9d5e6067c0...68.xls

windows7-x64

9d5e6067c0...68.xls

windows10-2004-x64

Sharing

General

Target

9d5e6067c0e410d07db36fc7aad8f4c704595da58f2ab6ed5eab6360bcab4268
Size

114KB
Sample

221120-msptxahh59
MD5

d2b1b39856a93c1ba65bf06dd434645f
SHA1

d1b62030e3227730b128a12d6ea6d9e123bccdea
SHA256

9d5e6067c0e410d07db36fc7aad8f4c704595da58f2ab6ed5eab6360bcab4268
SHA512

d4eb6d72f95af6fd89902e62b141557358b63a2c9605b4a744e756a7b0b13ce704e368e353d1de741a42b1bd6532138614ee74c8c038adfb686e1d69f5cbda4a
SSDEEP

1536:rrrrrTYSfUir1WVbrzLo+d7ITkR62l0I88+80fX4RWM2M/M+3h:ASrWVbrzLv7ITk9/jH0fX4D5kEh

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9d5e6067c0e410d07db36fc7aad8f4c704595da58f2ab6ed5eab6360bcab4268.xls

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

9d5e6067c0e410d07db36fc7aad8f4c704595da58f2ab6ed5eab6360bcab4268.xls

Resource

win10v2004-20221111-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  9d5e6067c0e410d07db36fc7aad8f4c704595da58f2ab6ed5eab6360bcab4268
- Size
  
  114KB
- MD5
  
  d2b1b39856a93c1ba65bf06dd434645f
- SHA1
  
  d1b62030e3227730b128a12d6ea6d9e123bccdea
- SHA256
  
  9d5e6067c0e410d07db36fc7aad8f4c704595da58f2ab6ed5eab6360bcab4268
- SHA512
  
  d4eb6d72f95af6fd89902e62b141557358b63a2c9605b4a744e756a7b0b13ce704e368e353d1de741a42b1bd6532138614ee74c8c038adfb686e1d69f5cbda4a
- SSDEEP
  
  1536:rrrrrTYSfUir1WVbrzLo+d7ITkR62l0I88+80fX4RWM2M/M+3h:ASrWVbrzLv7ITk9/jH0fX4D5kEh
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy