Overview

overview

8

Static

static

8

b742458ba2...b8.xls

windows7-x64

1

b742458ba2...b8.xls

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b742458ba2d05a224cd94341d22f8cec07c5efebcdf59f511a8d8fc1f71e19b8

  • Size

    133KB

  • Sample

    221127-q5vgpsfg4z

  • MD5

    7ff0107ce9dd6f2549bff8c3444e48b4

  • SHA1

    25d9e6b2c2fb6bb9370a43c1d70563a864021364

  • SHA256

    b742458ba2d05a224cd94341d22f8cec07c5efebcdf59f511a8d8fc1f71e19b8

  • SHA512

    d0bef98159261bdfed7f0707537c81a903d92beb0e9c271806ebe225ea88ae9359d7be7feb3ad60ebe8da6809f2d47a5e561569b0227425aa1718844a423fad2

  • SSDEEP

    1536:IoooCo8gho7hF9kETUo3Xmk8d66WeYHPhU0DdDPo78qPec/lujvnrusZPI43OGTm:OqNluusZg9bpQ8GTu

Score
8/10
macroxlm

Malware Config

Targets

    • Target

      b742458ba2d05a224cd94341d22f8cec07c5efebcdf59f511a8d8fc1f71e19b8

    • Size

      133KB

    • MD5

      7ff0107ce9dd6f2549bff8c3444e48b4

    • SHA1

      25d9e6b2c2fb6bb9370a43c1d70563a864021364

    • SHA256

      b742458ba2d05a224cd94341d22f8cec07c5efebcdf59f511a8d8fc1f71e19b8

    • SHA512

      d0bef98159261bdfed7f0707537c81a903d92beb0e9c271806ebe225ea88ae9359d7be7feb3ad60ebe8da6809f2d47a5e561569b0227425aa1718844a423fad2

    • SSDEEP

      1536:IoooCo8gho7hF9kETUo3Xmk8d66WeYHPhU0DdDPo78qPec/lujvnrusZPI43OGTm:OqNluusZg9bpQ8GTu

    Score
    6/10

    • Process spawned suspicious child process

      This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks