29bdd4d419993c95724ab63f121f66b0d08d534ae2374225bfb2d157df9ce307 | Triage

Submit
Reports

Overview

overview

Static

static

8

29bdd4d419...07.xls

windows7-x64

29bdd4d419...07.xls

windows10-2004-x64

1

Sharing

General

Target

29bdd4d419993c95724ab63f121f66b0d08d534ae2374225bfb2d157df9ce307
Size

107KB
Sample

221129-s37qcsfc9z
MD5

670a5393dd99b91a04d3ec73ebc6bd54
SHA1

a03133a8cc882263b1988f71056036a14aa3cf3b
SHA256

29bdd4d419993c95724ab63f121f66b0d08d534ae2374225bfb2d157df9ce307
SHA512

5e9f114ab3a56fe067ba775668e18af25db354dff1966cc84168a97038992f7f03f2c1aa9512826c590c8c3d38fad79168a9ee595b2cf727e2d1ccf9ff85f173
SSDEEP

1536:qJJJlh5I8UdsqfUWVbrzQ7ONfTkR62ls088ScJtXwRbM2M/MBVzJ:yWVbrzQ7ETk9rjhJtXwa5kDzJ

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

29bdd4d419993c95724ab63f121f66b0d08d534ae2374225bfb2d157df9ce307.xls

Resource

win7-20220901-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

29bdd4d419993c95724ab63f121f66b0d08d534ae2374225bfb2d157df9ce307.xls

Resource

win10v2004-20221111-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  29bdd4d419993c95724ab63f121f66b0d08d534ae2374225bfb2d157df9ce307
- Size
  
  107KB
- MD5
  
  670a5393dd99b91a04d3ec73ebc6bd54
- SHA1
  
  a03133a8cc882263b1988f71056036a14aa3cf3b
- SHA256
  
  29bdd4d419993c95724ab63f121f66b0d08d534ae2374225bfb2d157df9ce307
- SHA512
  
  5e9f114ab3a56fe067ba775668e18af25db354dff1966cc84168a97038992f7f03f2c1aa9512826c590c8c3d38fad79168a9ee595b2cf727e2d1ccf9ff85f173
- SSDEEP
  
  1536:qJJJlh5I8UdsqfUWVbrzQ7ONfTkR62ls088ScJtXwRbM2M/MBVzJ:yWVbrzQ7ETk9rjhJtXwa5kDzJ
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy