Overview

overview

10

Static

static

8

83e5a06df1...cd.xls

windows7-x64

10

83e5a06df1...cd.xls

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    83e5a06df19e649de2f9919e87d4fa22bb94884d395631390cf43a1143c95ccd

  • Size

    102KB

  • Sample

    221203-pxy99abd26

  • MD5

    8e360ef5181a381be5a8673bec9eb109

  • SHA1

    f7d913f852a4f505f259024fe233c8571becc1eb

  • SHA256

    83e5a06df19e649de2f9919e87d4fa22bb94884d395631390cf43a1143c95ccd

  • SHA512

    2b1e97d3752a5c98599bdbd4ddaea940fa5be95675eebce4f359fd18e2b769fe2e966a7405af5bfd7a0cacc98d512b487f8c0ff32e864adf9035d670ca1b372b

  • SSDEEP

    1536:NuuuuaP44zZTaHWVbrzxDqRD7ITkR62lFKhY7nJdJoOd7cJtXwRHM2M/Mgif:OuWVbrz27ITk9W2AJtXwW5krf

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      83e5a06df19e649de2f9919e87d4fa22bb94884d395631390cf43a1143c95ccd

    • Size

      102KB

    • MD5

      8e360ef5181a381be5a8673bec9eb109

    • SHA1

      f7d913f852a4f505f259024fe233c8571becc1eb

    • SHA256

      83e5a06df19e649de2f9919e87d4fa22bb94884d395631390cf43a1143c95ccd

    • SHA512

      2b1e97d3752a5c98599bdbd4ddaea940fa5be95675eebce4f359fd18e2b769fe2e966a7405af5bfd7a0cacc98d512b487f8c0ff32e864adf9035d670ca1b372b

    • SSDEEP

      1536:NuuuuaP44zZTaHWVbrzxDqRD7ITkR62lFKhY7nJdJoOd7cJtXwRHM2M/Mgif:OuWVbrz27ITk9W2AJtXwW5krf

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

1
T1158

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Hidden Files and Directories

1
T1158

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks