Overview

overview

10

Static

static

8

c2ec2e62fd...4d.xls

windows7-x64

10

c2ec2e62fd...4d.xls

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    c2ec2e62fd2d0de3d3201930c6ac6dadd399bf0c1dc39235afc6844ccbbfdd4d

  • Size

    195KB

  • Sample

    221205-rpwv9sgg55

  • MD5

    af30215fbe5c8ca15495732b6dc63117

  • SHA1

    2f33aae339d90cd12c9dcc393a90c1f8b90807ad

  • SHA256

    c2ec2e62fd2d0de3d3201930c6ac6dadd399bf0c1dc39235afc6844ccbbfdd4d

  • SHA512

    0ec4399dbe32f3f6bbd48b9612024ca8d6f0c99489daf0e779761f35f459ee8dce8b93ec0d5d790136406bfe8bd5b4de6fee010e6fedc13fe8d87acecaaa176d

  • SSDEEP

    3072:K8Cy8i/1fHsA3cCR8IyAWVHrzQ7ITkxciD7uL:OihcCv

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      c2ec2e62fd2d0de3d3201930c6ac6dadd399bf0c1dc39235afc6844ccbbfdd4d

    • Size

      195KB

    • MD5

      af30215fbe5c8ca15495732b6dc63117

    • SHA1

      2f33aae339d90cd12c9dcc393a90c1f8b90807ad

    • SHA256

      c2ec2e62fd2d0de3d3201930c6ac6dadd399bf0c1dc39235afc6844ccbbfdd4d

    • SHA512

      0ec4399dbe32f3f6bbd48b9612024ca8d6f0c99489daf0e779761f35f459ee8dce8b93ec0d5d790136406bfe8bd5b4de6fee010e6fedc13fe8d87acecaaa176d

    • SSDEEP

      3072:K8Cy8i/1fHsA3cCR8IyAWVHrzQ7ITkxciD7uL:OihcCv

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks