02bf7d1e4c52e9d41e75797dee71710d3facfeb32e2481edc9a367e7c06ac4b7 | Triage

Submit
Reports

Overview

overview

Static

static

8

02bf7d1e4c...b7.xls

windows7-x64

02bf7d1e4c...b7.xls

windows10-2004-x64

Sharing

General

Target

02bf7d1e4c52e9d41e75797dee71710d3facfeb32e2481edc9a367e7c06ac4b7
Size

118KB
Sample

221125-x51gaada2x
MD5

153476d6a5b62e27d0d2e4d971bfe1ca
SHA1

00a16785e74f79198fe6ea71f1e3b748dec6dab4
SHA256

02bf7d1e4c52e9d41e75797dee71710d3facfeb32e2481edc9a367e7c06ac4b7
SHA512

d86d3acefc326b5e0f43f1e2de8035a5343aca9f72d5fb50df72fce1ebe463491f185340131e646d423b5ccc6cc260b6ef08d7f129766a1a25be35ba2e792642
SSDEEP

3072:i+l6Nc7yRzs1H75wkZUgsQ6NqTBun5oTAKWVbrzQ7ITk3Unu/JtXwiyF3:Rl6Nc7yRzs1H75wkZUgsQ6NqTBun5okt

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

02bf7d1e4c52e9d41e75797dee71710d3facfeb32e2481edc9a367e7c06ac4b7.xls

Resource

win7-20220901-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

02bf7d1e4c52e9d41e75797dee71710d3facfeb32e2481edc9a367e7c06ac4b7.xls

Resource

win10v2004-20220812-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  02bf7d1e4c52e9d41e75797dee71710d3facfeb32e2481edc9a367e7c06ac4b7
- Size
  
  118KB
- MD5
  
  153476d6a5b62e27d0d2e4d971bfe1ca
- SHA1
  
  00a16785e74f79198fe6ea71f1e3b748dec6dab4
- SHA256
  
  02bf7d1e4c52e9d41e75797dee71710d3facfeb32e2481edc9a367e7c06ac4b7
- SHA512
  
  d86d3acefc326b5e0f43f1e2de8035a5343aca9f72d5fb50df72fce1ebe463491f185340131e646d423b5ccc6cc260b6ef08d7f129766a1a25be35ba2e792642
- SSDEEP
  
  3072:i+l6Nc7yRzs1H75wkZUgsQ6NqTBun5oTAKWVbrzQ7ITk3Unu/JtXwiyF3:Rl6Nc7yRzs1H75wkZUgsQ6NqTBun5okt
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy