General
-
Target
0dc23c2f8a57268da4e0839394003dffe703e889b4013be45f401621789a75d8
-
Size
208KB
-
Sample
221129-knq53adb77
-
MD5
ff67f986418caf6c865cf41899dbf590
-
SHA1
e14d21cc8aea805515dacedeba58ce9fa1303889
-
SHA256
0dc23c2f8a57268da4e0839394003dffe703e889b4013be45f401621789a75d8
-
SHA512
0d208f4460988054c90804ae2b8cbb7e6569c5c457432ba360eddab262a0a22c400d7fd134fba0c03ef9fb077dee030989a15f64f137f094b5cc75c706b64dc5
-
SSDEEP
3072:KsBOlWzB93OrUAiLPrcsUBbXOwICJHE0Bc+lPOvy3Ga2jcc0lbxOK92AJtXwZz:ZBvzB93OxOwICZEQPOvec2
Behavioral task
behavioral1
Sample
0dc23c2f8a57268da4e0839394003dffe703e889b4013be45f401621789a75d8.xls
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
0dc23c2f8a57268da4e0839394003dffe703e889b4013be45f401621789a75d8.xls
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
0dc23c2f8a57268da4e0839394003dffe703e889b4013be45f401621789a75d8
-
Size
208KB
-
MD5
ff67f986418caf6c865cf41899dbf590
-
SHA1
e14d21cc8aea805515dacedeba58ce9fa1303889
-
SHA256
0dc23c2f8a57268da4e0839394003dffe703e889b4013be45f401621789a75d8
-
SHA512
0d208f4460988054c90804ae2b8cbb7e6569c5c457432ba360eddab262a0a22c400d7fd134fba0c03ef9fb077dee030989a15f64f137f094b5cc75c706b64dc5
-
SSDEEP
3072:KsBOlWzB93OrUAiLPrcsUBbXOwICJHE0Bc+lPOvy3Ga2jcc0lbxOK92AJtXwZz:ZBvzB93OxOwICZEQPOvec2
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Deletes itself
-