031f98c5ed164bdec7aa955a18d5ed926be4dcb4791da7b0df8fa0b499e1ee41 | Triage

Submit
Reports

Overview

overview

Static

static

8

031f98c5ed...41.xls

windows7-x64

031f98c5ed...41.xls

windows10-2004-x64

Sharing

General

Target

031f98c5ed164bdec7aa955a18d5ed926be4dcb4791da7b0df8fa0b499e1ee41
Size

99KB
Sample

221123-ymfvlaae67
MD5

8c7935e4eac6d3386bc28f357e49e45e
SHA1

8f9c340a8759d14b194832ce83d9ab2a41e89687
SHA256

031f98c5ed164bdec7aa955a18d5ed926be4dcb4791da7b0df8fa0b499e1ee41
SHA512

5de5fd928cbd08cb81992cf51395b2c09ce6f1601a3bc4b30727efb0f07a76e5c969e787947591624e75514dea56f3d41717dacef9759f0bb7c71540428ebf6d
SSDEEP

1536:33336WBy0UNBNIl2dcHt7TPkyq7OkRm0Z95Eq+JjMmXvWVbrzQAfwpTkR62ll06/:RK+2gWVbrzQI+Tk985JtXwE5ksCtR

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

031f98c5ed164bdec7aa955a18d5ed926be4dcb4791da7b0df8fa0b499e1ee41.xls

Resource

win7-20220901-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

031f98c5ed164bdec7aa955a18d5ed926be4dcb4791da7b0df8fa0b499e1ee41.xls

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  031f98c5ed164bdec7aa955a18d5ed926be4dcb4791da7b0df8fa0b499e1ee41
- Size
  
  99KB
- MD5
  
  8c7935e4eac6d3386bc28f357e49e45e
- SHA1
  
  8f9c340a8759d14b194832ce83d9ab2a41e89687
- SHA256
  
  031f98c5ed164bdec7aa955a18d5ed926be4dcb4791da7b0df8fa0b499e1ee41
- SHA512
  
  5de5fd928cbd08cb81992cf51395b2c09ce6f1601a3bc4b30727efb0f07a76e5c969e787947591624e75514dea56f3d41717dacef9759f0bb7c71540428ebf6d
- SSDEEP
  
  1536:33336WBy0UNBNIl2dcHt7TPkyq7OkRm0Z95Eq+JjMmXvWVbrzQAfwpTkR62ll06/:RK+2gWVbrzQI+Tk985JtXwE5ksCtR
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy