Overview

overview

10

Static

static

8

֧Ԥ...��.xls

windows7-x64

10

֧Ԥ...��.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aa472760fa7062dbbcd33a3414d1bf21035219e9a3e5fce9539644e43a202800

  • Size

    32KB

  • Sample

    221124-fwbm5abc66

  • MD5

    39bb0aea373f353faeb65e06499a855a

  • SHA1

    b68f8990b55dfcb40576c98b9a3de281bd48aefa

  • SHA256

    aa472760fa7062dbbcd33a3414d1bf21035219e9a3e5fce9539644e43a202800

  • SHA512

    e0d77bf67aaf4a6fa37b8a75c25691e09da7c1ec96440aad9af0fb515862df501cd8eebe2e0df74a3d35e268a1a7b21913b2ab85f57f4bab5b5afb4a8798d223

  • SSDEEP

    768:J8G7wnRiyIIkk3RgAO6Pnn9hCNZd7n+YtvBGVHn7BhtkcsB6:J8kIkk3RgA/9u3DtpabBjkcs4

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      ֧Ԥܱ.XLS

    • Size

      80KB

    • MD5

      d0bf1b16cdeb2384d6c3f2ad02fbf9a6

    • SHA1

      26958af790f6e9a70ce10581d0af80750cb0f3e7

    • SHA256

      8c066b235b5c287a3c2dfac0b1b7cff848fe265af14937235bfcd50dde0c1b23

    • SHA512

      ae05c5a8303daa2d217a4439888230660c633ddfd48e1d11d57f2eb3a306e74ce3be6a97136384a15f6a32f85386a10a5007bda563e49d315a90154da50c9e95

    • SSDEEP

      1536:n0000p4uk/Ee2jcc0lbxOvTgZWIhY7nJdJoOd7cJtXw7kh:W2jcc0lbxOrm2AJtXwoh

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks