5fcb2a6dcddcda5e4eb8ae6ed41deda4897049f7e8887f15ec10862df10202a1 | Triage

Submit
Reports

Overview

overview

Static

static

8

5fcb2a6dcd...a1.xls

windows7-x64

5fcb2a6dcd...a1.xls

windows10-2004-x64

Sharing

General

Target

5fcb2a6dcddcda5e4eb8ae6ed41deda4897049f7e8887f15ec10862df10202a1
Size

116KB
Sample

221123-yzczgabd96
MD5

27ba9f9efa44a37eb90541f2512b6a1a
SHA1

59352d42aad833ba69a17d739cc74fc53d6fd535
SHA256

5fcb2a6dcddcda5e4eb8ae6ed41deda4897049f7e8887f15ec10862df10202a1
SHA512

e6871148018e2df1070dfc42ab4a53f0f9d48cd1dd2fc2b044f8fec500081df13486f2ee4532c8f3d7d299865858ecd8c9fd6b21e866e8f8de8d1b538d872b52
SSDEEP

1536:XP6mbI7cUIpEHHye4YyWVbrzQ7FxQXTkR62d3sY7nJdMcOu4/WwF15dM2M/MsYG/:s7HIpEHHkWVbrzQ7foTk9h4Bw5kI/

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5fcb2a6dcddcda5e4eb8ae6ed41deda4897049f7e8887f15ec10862df10202a1.xls

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

5fcb2a6dcddcda5e4eb8ae6ed41deda4897049f7e8887f15ec10862df10202a1.xls

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  5fcb2a6dcddcda5e4eb8ae6ed41deda4897049f7e8887f15ec10862df10202a1
- Size
  
  116KB
- MD5
  
  27ba9f9efa44a37eb90541f2512b6a1a
- SHA1
  
  59352d42aad833ba69a17d739cc74fc53d6fd535
- SHA256
  
  5fcb2a6dcddcda5e4eb8ae6ed41deda4897049f7e8887f15ec10862df10202a1
- SHA512
  
  e6871148018e2df1070dfc42ab4a53f0f9d48cd1dd2fc2b044f8fec500081df13486f2ee4532c8f3d7d299865858ecd8c9fd6b21e866e8f8de8d1b538d872b52
- SSDEEP
  
  1536:XP6mbI7cUIpEHHye4YyWVbrzQ7FxQXTkR62d3sY7nJdMcOu4/WwF15dM2M/MsYG/:s7HIpEHHkWVbrzQ7foTk9h4Bw5kI/
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy