bdc519de193ec9595ac30d2bf4fc79db8124fbcf9f429ec18901efd2841e22c3 | Triage

Submit
Reports

Overview

overview

Static

static

8

bdc519de19...c3.xls

windows7-x64

bdc519de19...c3.xls

windows10-2004-x64

Sharing

General

Target

bdc519de193ec9595ac30d2bf4fc79db8124fbcf9f429ec18901efd2841e22c3
Size

123KB
Sample

221129-knlwcaga9z
MD5

8e491d585c571464024687188adaa698
SHA1

d9e455251beb40c2515a1f84f21b2ad55d403e17
SHA256

bdc519de193ec9595ac30d2bf4fc79db8124fbcf9f429ec18901efd2841e22c3
SHA512

be992ad2a2eb163bb256e1b06a7ff4c28b1e7c761473bae320d0e601ddfb8c4609a49e9e031a7c23e03f3a3c1b7d940d2ec3d9889abba8dbc55884d146658b27
SSDEEP

3072:I/Z+RwPONXoRjDhIcp0fDlaGGx+cL26nnTWVbl9zQ7ITk9j2AJtXw7mE/YcC4:EZ+RwPONXoRjDhIcp0fDlavx+W26nnK7

Score

10^/10

macro

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

bdc519de193ec9595ac30d2bf4fc79db8124fbcf9f429ec18901efd2841e22c3.xls

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

bdc519de193ec9595ac30d2bf4fc79db8124fbcf9f429ec18901efd2841e22c3.xls

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  bdc519de193ec9595ac30d2bf4fc79db8124fbcf9f429ec18901efd2841e22c3
- Size
  
  123KB
- MD5
  
  8e491d585c571464024687188adaa698
- SHA1
  
  d9e455251beb40c2515a1f84f21b2ad55d403e17
- SHA256
  
  bdc519de193ec9595ac30d2bf4fc79db8124fbcf9f429ec18901efd2841e22c3
- SHA512
  
  be992ad2a2eb163bb256e1b06a7ff4c28b1e7c761473bae320d0e601ddfb8c4609a49e9e031a7c23e03f3a3c1b7d940d2ec3d9889abba8dbc55884d146658b27
- SSDEEP
  
  3072:I/Z+RwPONXoRjDhIcp0fDlaGGx+cL26nnTWVbl9zQ7ITk9j2AJtXw7mE/YcC4:EZ+RwPONXoRjDhIcp0fDlavx+W26nnK7
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy