dfac5bfaada12c698dd7467346078adea88eacd0466195d276cf60fcbaf41ef2 | Triage

Submit
Reports

Overview

overview

Static

static

8

dfac5bfaad...f2.xls

windows7-x64

dfac5bfaad...f2.xls

windows10-2004-x64

Sharing

General

Target

dfac5bfaada12c698dd7467346078adea88eacd0466195d276cf60fcbaf41ef2
Size

146KB
Sample

221123-y9v8sscc36
MD5

498ba7ac5296b5f3e807d13a6cfbb592
SHA1

cd1f735934c657331673d8413c1964c8deb9bfd5
SHA256

dfac5bfaada12c698dd7467346078adea88eacd0466195d276cf60fcbaf41ef2
SHA512

344ef9e67c66cd613e075e24cffaa089398a66ad34ab604b44fbfac5666b634657d8b40bd0f1b29c85f21b55300f3b6ad208ae60bdf90d6aa300c670f1a7a60f
SSDEEP

1536:Jtttgod7eOtuhvWVbrzQ7ITkVHdvMg62ldWK6UATAisON+cJtXwEq6:1EWVbrzQ7ITkzindJtXw36

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dfac5bfaada12c698dd7467346078adea88eacd0466195d276cf60fcbaf41ef2.xls

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

dfac5bfaada12c698dd7467346078adea88eacd0466195d276cf60fcbaf41ef2.xls

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  dfac5bfaada12c698dd7467346078adea88eacd0466195d276cf60fcbaf41ef2
- Size
  
  146KB
- MD5
  
  498ba7ac5296b5f3e807d13a6cfbb592
- SHA1
  
  cd1f735934c657331673d8413c1964c8deb9bfd5
- SHA256
  
  dfac5bfaada12c698dd7467346078adea88eacd0466195d276cf60fcbaf41ef2
- SHA512
  
  344ef9e67c66cd613e075e24cffaa089398a66ad34ab604b44fbfac5666b634657d8b40bd0f1b29c85f21b55300f3b6ad208ae60bdf90d6aa300c670f1a7a60f
- SSDEEP
  
  1536:Jtttgod7eOtuhvWVbrzQ7ITkVHdvMg62ldWK6UATAisON+cJtXwEq6:1EWVbrzQ7ITkzindJtXw36
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy