45dde1a6b4f0b270c3a1b46687f687a24a3a370a0bac78fa9b2779af08dee71d | Triage

Submit
Reports

Overview

overview

Static

static

8

45dde1a6b4...1d.xls

windows7-x64

45dde1a6b4...1d.xls

windows10-2004-x64

1

Sharing

General

Target

45dde1a6b4f0b270c3a1b46687f687a24a3a370a0bac78fa9b2779af08dee71d
Size

112KB
Sample

221127-dfcjdahe9t
MD5

52931c78709787e782150e3eaf6f7303
SHA1

66f1f50c36650e23353a39ae997456f7f39ad241
SHA256

45dde1a6b4f0b270c3a1b46687f687a24a3a370a0bac78fa9b2779af08dee71d
SHA512

67540e0a7f29713211def52e0ecccc41967532285b1079d43e1cb9253ffd2e3db7b6b24e627586eb3083416b7168bb681a98278c96c3380e6caa8675e1ccc6c0
SSDEEP

1536:Jw999AjC5HnhHNW+2I4Xj0U/AJZqZ95Aiu2OzpAgtHADLzQWVbrzmCd7ITkiD2lD:JSLzpAgKAWVbrzRd7ITkD3tlap45klu

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

45dde1a6b4f0b270c3a1b46687f687a24a3a370a0bac78fa9b2779af08dee71d.xls

Resource

win7-20221111-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

45dde1a6b4f0b270c3a1b46687f687a24a3a370a0bac78fa9b2779af08dee71d.xls

Resource

win10v2004-20221111-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  45dde1a6b4f0b270c3a1b46687f687a24a3a370a0bac78fa9b2779af08dee71d
- Size
  
  112KB
- MD5
  
  52931c78709787e782150e3eaf6f7303
- SHA1
  
  66f1f50c36650e23353a39ae997456f7f39ad241
- SHA256
  
  45dde1a6b4f0b270c3a1b46687f687a24a3a370a0bac78fa9b2779af08dee71d
- SHA512
  
  67540e0a7f29713211def52e0ecccc41967532285b1079d43e1cb9253ffd2e3db7b6b24e627586eb3083416b7168bb681a98278c96c3380e6caa8675e1ccc6c0
- SSDEEP
  
  1536:Jw999AjC5HnhHNW+2I4Xj0U/AJZqZ95Aiu2OzpAgtHADLzQWVbrzmCd7ITkiD2lD:JSLzpAgKAWVbrzRd7ITkD3tlap45klu
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy