9f6ecd64321955bc1fa80218a8edf38e80795b1718f2dcd6a04096dcca3c2ab9 | Triage

Submit
Reports

Overview

overview

Static

static

8

9f6ecd6432...b9.xls

windows7-x64

9f6ecd6432...b9.xls

windows10-2004-x64

Sharing

General

Target

9f6ecd64321955bc1fa80218a8edf38e80795b1718f2dcd6a04096dcca3c2ab9
Size

101KB
Sample

221125-x49zbsch7s
MD5

2f424af4c436a6d478c427dbe7ac300a
SHA1

dad41d786c8efbb59f53142b6575c7d0e9ba9dc5
SHA256

9f6ecd64321955bc1fa80218a8edf38e80795b1718f2dcd6a04096dcca3c2ab9
SHA512

f33002fa59bf675629181e43a99680d8b9d92b628352332236d0e3cbe4ddd981a2da887e1889683de582fd77c1bc23957a58927b747aa6760bfe9c51a91cb5e2
SSDEEP

1536:G777PJtT1V3WVbrzQ7lSzTkR62lGM88DcJtXwRtM2M/MW1adQ:gWVbrzQ7UTk9tjYJtXwQ5ksadQ

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

9f6ecd64321955bc1fa80218a8edf38e80795b1718f2dcd6a04096dcca3c2ab9.xls

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

9f6ecd64321955bc1fa80218a8edf38e80795b1718f2dcd6a04096dcca3c2ab9.xls

Resource

win10v2004-20220901-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  9f6ecd64321955bc1fa80218a8edf38e80795b1718f2dcd6a04096dcca3c2ab9
- Size
  
  101KB
- MD5
  
  2f424af4c436a6d478c427dbe7ac300a
- SHA1
  
  dad41d786c8efbb59f53142b6575c7d0e9ba9dc5
- SHA256
  
  9f6ecd64321955bc1fa80218a8edf38e80795b1718f2dcd6a04096dcca3c2ab9
- SHA512
  
  f33002fa59bf675629181e43a99680d8b9d92b628352332236d0e3cbe4ddd981a2da887e1889683de582fd77c1bc23957a58927b747aa6760bfe9c51a91cb5e2
- SSDEEP
  
  1536:G777PJtT1V3WVbrzQ7lSzTkR62lGM88DcJtXwRtM2M/MW1adQ:gWVbrzQ7UTk9tjYJtXwQ5ksadQ
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy