Overview

overview

10

Static

static

8

7905d000b1...6a.xls

windows7-x64

10

7905d000b1...6a.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    7905d000b18e5a13e71ac10bc1e9dcb1688352eae2e302504ab2a6b87c82eb6a

  • Size

    114KB

  • Sample

    221123-1ktd1sfe52

  • MD5

    d3ced66c384518e593725ffb37fb9806

  • SHA1

    6dcbf63aa11c01dd6d804f89aa0c6ac499d357f0

  • SHA256

    7905d000b18e5a13e71ac10bc1e9dcb1688352eae2e302504ab2a6b87c82eb6a

  • SHA512

    2e5bc619ee266a4d66cbd91b6434c62b004012f32fdee20557a457ec583bb20ce3b83d292737a4aa3414aa410295c9900c12cb3bc4f7fec47df87619e49ca241

  • SSDEEP

    3072:4XV1gxv7yZmspH7+cclK3scB4ukoRWGNGuKJ9wfbK2jcc0lbxOrJ2IJtXw8e:eV1gxv7yZmspH7+cclK3scB4ukoRWGNb

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      7905d000b18e5a13e71ac10bc1e9dcb1688352eae2e302504ab2a6b87c82eb6a

    • Size

      114KB

    • MD5

      d3ced66c384518e593725ffb37fb9806

    • SHA1

      6dcbf63aa11c01dd6d804f89aa0c6ac499d357f0

    • SHA256

      7905d000b18e5a13e71ac10bc1e9dcb1688352eae2e302504ab2a6b87c82eb6a

    • SHA512

      2e5bc619ee266a4d66cbd91b6434c62b004012f32fdee20557a457ec583bb20ce3b83d292737a4aa3414aa410295c9900c12cb3bc4f7fec47df87619e49ca241

    • SSDEEP

      3072:4XV1gxv7yZmspH7+cclK3scB4ukoRWGNGuKJ9wfbK2jcc0lbxOrJ2IJtXw8e:eV1gxv7yZmspH7+cclK3scB4ukoRWGNb

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks