372ed5de4a91fed82ac7aa1c4e8e2df7f0610510331dd7ebed9f6bbcb7bb1cf5 | Triage

Submit
Reports

Overview

overview

Static

static

8

372ed5de4a...f5.xls

windows7-x64

372ed5de4a...f5.xls

windows10-2004-x64

Sharing

General

Target

372ed5de4a91fed82ac7aa1c4e8e2df7f0610510331dd7ebed9f6bbcb7bb1cf5
Size

109KB
Sample

221128-nqrfdsag55
MD5

d0c3bd89f949b3f0427a11a9cbcc2e9b
SHA1

925eec4e658b2ba0203a15b9917986c0b51fef17
SHA256

372ed5de4a91fed82ac7aa1c4e8e2df7f0610510331dd7ebed9f6bbcb7bb1cf5
SHA512

658d8710c592401a63204b33dbfce7a8d5b0d59b9286a8bb3497b171d83da7f8a8b6ff17e29ed1e5e68147c212bed37372ae6adc72128525a3c5140938e1ab9c
SSDEEP

1536:7lllJ1NrYNzWV3W1MLb6zQ7ITkR62laM88dcJtXwFfM2M/MMUzTycMufi:8zWVGDzQ7ITk9FjWJtXwO5kXVO

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

372ed5de4a91fed82ac7aa1c4e8e2df7f0610510331dd7ebed9f6bbcb7bb1cf5.xls

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

372ed5de4a91fed82ac7aa1c4e8e2df7f0610510331dd7ebed9f6bbcb7bb1cf5.xls

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  372ed5de4a91fed82ac7aa1c4e8e2df7f0610510331dd7ebed9f6bbcb7bb1cf5
- Size
  
  109KB
- MD5
  
  d0c3bd89f949b3f0427a11a9cbcc2e9b
- SHA1
  
  925eec4e658b2ba0203a15b9917986c0b51fef17
- SHA256
  
  372ed5de4a91fed82ac7aa1c4e8e2df7f0610510331dd7ebed9f6bbcb7bb1cf5
- SHA512
  
  658d8710c592401a63204b33dbfce7a8d5b0d59b9286a8bb3497b171d83da7f8a8b6ff17e29ed1e5e68147c212bed37372ae6adc72128525a3c5140938e1ab9c
- SSDEEP
  
  1536:7lllJ1NrYNzWV3W1MLb6zQ7ITkR62laM88dcJtXwFfM2M/MMUzTycMufi:8zWVGDzQ7ITk9FjWJtXwO5kXVO
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy