6278e9809353e83e2d9f35aabf00862ae4f13e9a6c73e11874cd12e78b23274f | Triage

Submit
Reports

Overview

overview

Static

static

8

6278e98093...4f.xls

windows7-x64

6278e98093...4f.xls

windows10-2004-x64

1

Sharing

General

Target

6278e9809353e83e2d9f35aabf00862ae4f13e9a6c73e11874cd12e78b23274f
Size

110KB
Sample

221129-knnd6sdb68
MD5

1349495a04d9fe9b8dfce8fd2f924bfc
SHA1

dae0b6a868b84e2f4aeeb53e806af16238fc93c4
SHA256

6278e9809353e83e2d9f35aabf00862ae4f13e9a6c73e11874cd12e78b23274f
SHA512

2284a27e9eff295c326b7f6cc9d9812447591986a21190ef655f6ec44af1d9009de38cb4df9f1745fa4d6096a935ae9647cb1b3534260b11f5f9629d4735ad83
SSDEEP

1536:qCCCoMnZj/XGmR2Cd9EG+3g/dZ95uZZBez5WVbrek6KYQ7ITkiD2wxDp/WwF1p73:3OZoWVbreXpQ7ITkDwldkl5k5n

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6278e9809353e83e2d9f35aabf00862ae4f13e9a6c73e11874cd12e78b23274f.xls

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

6278e9809353e83e2d9f35aabf00862ae4f13e9a6c73e11874cd12e78b23274f.xls

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

Malware Config

Targets

- Target
  
  6278e9809353e83e2d9f35aabf00862ae4f13e9a6c73e11874cd12e78b23274f
- Size
  
  110KB
- MD5
  
  1349495a04d9fe9b8dfce8fd2f924bfc
- SHA1
  
  dae0b6a868b84e2f4aeeb53e806af16238fc93c4
- SHA256
  
  6278e9809353e83e2d9f35aabf00862ae4f13e9a6c73e11874cd12e78b23274f
- SHA512
  
  2284a27e9eff295c326b7f6cc9d9812447591986a21190ef655f6ec44af1d9009de38cb4df9f1745fa4d6096a935ae9647cb1b3534260b11f5f9629d4735ad83
- SSDEEP
  
  1536:qCCCoMnZj/XGmR2Cd9EG+3g/dZ95uZZBez5WVbrek6KYQ7ITkiD2wxDp/WwF1p73:3OZoWVbreXpQ7ITkDwldkl5k5n
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy