e0fb4a07dc5f0dc09615337cd85041b51505655e93446fd6aad285da41a03cca | Triage

Submit
Reports

Overview

overview

Static

static

8

e0fb4a07dc...ca.xls

windows7-x64

e0fb4a07dc...ca.xls

windows10-2004-x64

Sharing

General

Target

e0fb4a07dc5f0dc09615337cd85041b51505655e93446fd6aad285da41a03cca
Size

92KB
Sample

221129-r2fptacc5x
MD5

962f6cd74a36b304c218bf6f77e49251
SHA1

5ecf08fbaad64f0b2a81c5f57f1c876015960c50
SHA256

e0fb4a07dc5f0dc09615337cd85041b51505655e93446fd6aad285da41a03cca
SHA512

83cbd0e696dfe2b45a14ac6c894146517f6307c73685c088c27b85463ebce48e4e3d079edb6383776909e23413f90105d648bb9b65651f62d186b8ff17bb90d1
SSDEEP

1536:O1RllFYv1WVb5w2RYIzQ7ITkR62lUIhY7nJdJoOd7cJKXwRZM2M/M2A6:WFQWVbtFzQ7ITk9j2AJKXwA5kT6

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

e0fb4a07dc5f0dc09615337cd85041b51505655e93446fd6aad285da41a03cca.xls

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

e0fb4a07dc5f0dc09615337cd85041b51505655e93446fd6aad285da41a03cca.xls

Resource

win10v2004-20220812-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  e0fb4a07dc5f0dc09615337cd85041b51505655e93446fd6aad285da41a03cca
- Size
  
  92KB
- MD5
  
  962f6cd74a36b304c218bf6f77e49251
- SHA1
  
  5ecf08fbaad64f0b2a81c5f57f1c876015960c50
- SHA256
  
  e0fb4a07dc5f0dc09615337cd85041b51505655e93446fd6aad285da41a03cca
- SHA512
  
  83cbd0e696dfe2b45a14ac6c894146517f6307c73685c088c27b85463ebce48e4e3d079edb6383776909e23413f90105d648bb9b65651f62d186b8ff17bb90d1
- SSDEEP
  
  1536:O1RllFYv1WVb5w2RYIzQ7ITkR62lUIhY7nJdJoOd7cJKXwRZM2M/M2A6:WFQWVbtFzQ7ITk9j2AJKXwA5kT6
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy