b7062983e7667a1b86c1bd1123bc3aac29b7a8200b079c9bc4b566dd1c7ee44d | Triage

Submit
Reports

Overview

overview

8

Static

static

B7062983E7...4D.xls

windows7-x64

8

B7062983E7...4D.xls

windows10-2004-x64

1

Sharing

General

Target

B7062983E7667A1B86C1BD1123BC3AAC29B7A8200B079C9BC4B566DD1C7EE44D
Size

523KB
Sample

221123-r1yt1ada41
MD5

44fc10c3b6cc2f42d2dacd19f9219915
SHA1

c601f9d1993c4e5b2902571780ec5ff3ac220cfa
SHA256

b7062983e7667a1b86c1bd1123bc3aac29b7a8200b079c9bc4b566dd1c7ee44d
SHA512

18383875bb3d3ae893a0776b5ca3dc7d84206c6fcf8e5fb3d8fcfe32ca4ecc73d982be5b99a415a692175bd802513b742759a4320ca93a715a9074508684f0e8
SSDEEP

12288:TdNqrDx7XXXXXXXXXXXXUXXXXXXXrXXXXXXXXEmYmTmfIUb5crWagQJl1Qzpsn4:Or5XXXXXXXXXXXXUXXXXXXXrXXXXXXXM

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

B7062983E7667A1B86C1BD1123BC3AAC29B7A8200B079C9BC4B566DD1C7EE44D.xls

Resource

win7-20220901-en

windows7-x64

17 signatures

150 seconds

Behavioral task

behavioral2

Sample

B7062983E7667A1B86C1BD1123BC3AAC29B7A8200B079C9BC4B566DD1C7EE44D.xls

Resource

win10v2004-20220901-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  B7062983E7667A1B86C1BD1123BC3AAC29B7A8200B079C9BC4B566DD1C7EE44D
- Size
  
  523KB
- MD5
  
  44fc10c3b6cc2f42d2dacd19f9219915
- SHA1
  
  c601f9d1993c4e5b2902571780ec5ff3ac220cfa
- SHA256
  
  b7062983e7667a1b86c1bd1123bc3aac29b7a8200b079c9bc4b566dd1c7ee44d
- SHA512
  
  18383875bb3d3ae893a0776b5ca3dc7d84206c6fcf8e5fb3d8fcfe32ca4ecc73d982be5b99a415a692175bd802513b742759a4320ca93a715a9074508684f0e8
- SSDEEP
  
  12288:TdNqrDx7XXXXXXXXXXXXUXXXXXXXrXXXXXXXXEmYmTmfIUb5crWagQJl1Qzpsn4:Or5XXXXXXXXXXXXUXXXXXXXrXXXXXXXM
Score

8^/10
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Exploitation for Client Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy