a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335 | Triage

Submit
Reports

Overview

overview

Static

static

8

a2941a8406...35.xls

windows7-x64

a2941a8406...35.xls

windows10-2004-x64

1

Sharing

General

Target

a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335
Size

93KB
Sample

221129-s39jysce86
MD5

0bada76ae17a2ac27b4b31028038d0f3
SHA1

03c6694d71539e22fc160b7d5439cbaefea663df
SHA256

a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335
SHA512

6ff7292d355ce7fa41d8e31a9aec877f79b41b47d0dfcf15b331b52505bf62fb1e6e04902277b50ca422b3695a65f062962ff604166142e3682b217a95b08868
SSDEEP

1536:adddRYw4GPOWVbLwMEzQ7ITkR62l24cY7nJdFoOGIWWtwXKWqM2M/MLCp:HWVbkZzQ7ITk9Jpyas5kGp

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335.xls

Resource

win7-20221111-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335.xls

Resource

win10v2004-20220812-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335
- Size
  
  93KB
- MD5
  
  0bada76ae17a2ac27b4b31028038d0f3
- SHA1
  
  03c6694d71539e22fc160b7d5439cbaefea663df
- SHA256
  
  a2941a840666c728020baa0dd7b73cd750dc25d3401d6a29c0b6bb3d7aba1335
- SHA512
  
  6ff7292d355ce7fa41d8e31a9aec877f79b41b47d0dfcf15b331b52505bf62fb1e6e04902277b50ca422b3695a65f062962ff604166142e3682b217a95b08868
- SSDEEP
  
  1536:adddRYw4GPOWVbLwMEzQ7ITkR62l24cY7nJdFoOGIWWtwXKWqM2M/MLCp:HWVbkZzQ7ITk9Jpyas5kGp
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy