Overview

overview

10

Static

static

8

232a938cc9...d5.xls

windows7-x64

10

232a938cc9...d5.xls

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    232a938cc983e823c1f30757ca4b484851946f6b387eeb7ec336765b87428cd5

  • Size

    107KB

  • Sample

    221205-h8cr3age67

  • MD5

    af830928cc51980ce65ca247f753b549

  • SHA1

    cf339b92715845890bbe6841e240741792a8d3b8

  • SHA256

    232a938cc983e823c1f30757ca4b484851946f6b387eeb7ec336765b87428cd5

  • SHA512

    9414f5fa1d4b470c4763c4bd8709b4bb1d969a94294b58794e9a6156af2dcd7320056d7372ef6d9c2739a6debc3967409e9f026c1eb08ba534a3c956a3c2b33a

  • SSDEEP

    1536:DQQQQdckB4UApuooWVY6EZrzQ7ITkR62l/T88ScJtXwRLM2M/M/NROZ42:ZWVcrzQ7ITk9ljhJtXwm5k/OZ/

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      232a938cc983e823c1f30757ca4b484851946f6b387eeb7ec336765b87428cd5

    • Size

      107KB

    • MD5

      af830928cc51980ce65ca247f753b549

    • SHA1

      cf339b92715845890bbe6841e240741792a8d3b8

    • SHA256

      232a938cc983e823c1f30757ca4b484851946f6b387eeb7ec336765b87428cd5

    • SHA512

      9414f5fa1d4b470c4763c4bd8709b4bb1d969a94294b58794e9a6156af2dcd7320056d7372ef6d9c2739a6debc3967409e9f026c1eb08ba534a3c956a3c2b33a

    • SSDEEP

      1536:DQQQQdckB4UApuooWVY6EZrzQ7ITkR62l/T88ScJtXwRLM2M/M/NROZ42:ZWVcrzQ7ITk9ljhJtXwm5k/OZ/

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks