3394d6d3b0bf0d79fbbae6e8d694a64172031c98f446cbc4cdc0a0cfd8eead4c | Triage

Sharing

General

Target

Swift for september order.xls (1).zip
Size

124KB
Sample

221123-lw94ksfh41
MD5

c15e17647b90344999138397f6f25ae6
SHA1

2d92b4945a62e782624d049de40590eaaad3e7ca
SHA256

3394d6d3b0bf0d79fbbae6e8d694a64172031c98f446cbc4cdc0a0cfd8eead4c
SHA512

19db120c30b26989c94a52343cb6dccb35a7768a83ff1ee023f456f3714659dfdb494c9d27f1bc57311d393d4db3158cb1f66fec26c728e211f32cc464db7571
SSDEEP

3072:FIntunPq0LgohLYVz4fMYq5Qzx6AChe4eC1vRDF5k+tAVzDRpSx6irpcp:ktuPIoiNoAe4/1JF5k4AVHnHWW

Score

8^/10

Malware Config

Targets

- Target
  
  Swift for september order.xls
- Size
  
  145KB
- MD5
  
  8d6accfa2b80d488e27e91dd423b8795
- SHA1
  
  dff53fea38d208913c98d080567099269ce7d5bf
- SHA256
  
  70d16f987dae7cfbbe23a264f202c837ab36cd229ca5fa55f74493f886468fb5
- SHA512
  
  72c6e697c159bb7905a9feb199fd43abf65ec28bc3561d62e1433f374cfa378201ef7e48b5c923502e20c0a360efde1e981bc6fa17f7fded67389a9ea2b4b056
- SSDEEP
  
  3072:YXI8LuesUyi3zNpI8XGuF1hZe+Wh+KWMmxckiYQWBM5Ky:YXUesA3pppTF1hZC+KWuYQW8K
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2