General

  • Target

    827837hj.xls

  • Size

    26KB

  • Sample

    221204-mvjexafd5v

  • MD5

    a3a7be7f733771ff24d6286ea49db98c

  • SHA1

    9017cdc08851f162ae8ca54cfde0841526f4ebbf

  • SHA256

    348d37d813ca44c373ddd848e39f0ec422982b57e23b502f5ed10a5c86829485

  • SHA512

    3429d9049631bf85cb26394881511cda0af68d2cb6dbf6dbf867b10e46bbf2dc3fbd7769afb9727b8c82cdb3c8c586c84d3b24c4a15cc50a409b1bf70e6f04be

  • SSDEEP

    768:c4k3hOdsylKlgryzc4bNhZFGzE+cL2knAJ1OiCkOGBeS:7k3hOdsylKlgryzc4bNhZFGzE+cL2kn9

Score
10/10

Malware Config

Targets

    • Target

      827837hj.xls

    • Size

      26KB

    • MD5

      a3a7be7f733771ff24d6286ea49db98c

    • SHA1

      9017cdc08851f162ae8ca54cfde0841526f4ebbf

    • SHA256

      348d37d813ca44c373ddd848e39f0ec422982b57e23b502f5ed10a5c86829485

    • SHA512

      3429d9049631bf85cb26394881511cda0af68d2cb6dbf6dbf867b10e46bbf2dc3fbd7769afb9727b8c82cdb3c8c586c84d3b24c4a15cc50a409b1bf70e6f04be

    • SSDEEP

      768:c4k3hOdsylKlgryzc4bNhZFGzE+cL2knAJ1OiCkOGBeS:7k3hOdsylKlgryzc4bNhZFGzE+cL2kn9

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks