cfd3ebffec25887e5a8f3e1825037f906cb350809d80e12c630c2b145be9a919 | Triage

Submit
Reports

Overview

overview

Static

static

8

cfd3ebffec...19.xls

windows7-x64

cfd3ebffec...19.xls

windows10-2004-x64

Sharing

General

Target

cfd3ebffec25887e5a8f3e1825037f906cb350809d80e12c630c2b145be9a919
Size

75KB
Sample

221206-rtr3wafb86
MD5

25b22e2aa4ea998a5ad15c4c160f46bb
SHA1

cea8815d5c4d142861526b67c3a9d73f74ba6aa1
SHA256

cfd3ebffec25887e5a8f3e1825037f906cb350809d80e12c630c2b145be9a919
SHA512

7f00375bc621aa180bbd01a5d57bfff5e715dc06a7f9789ccecd00ee3985ec29fb5cc75554bb6940cb8d8b21d286b0ba35bd0865526c16627ef0229291ce3361
SSDEEP

1536:T4442d3Hn+It/l2jcc0lbxOqTgZ+XpWWWt2XKfP6z:V2jcc0lbxOKlp3a36z

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

cfd3ebffec25887e5a8f3e1825037f906cb350809d80e12c630c2b145be9a919.xls

Resource

win7-20220812-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

cfd3ebffec25887e5a8f3e1825037f906cb350809d80e12c630c2b145be9a919.xls

Resource

win10v2004-20221111-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  cfd3ebffec25887e5a8f3e1825037f906cb350809d80e12c630c2b145be9a919
- Size
  
  75KB
- MD5
  
  25b22e2aa4ea998a5ad15c4c160f46bb
- SHA1
  
  cea8815d5c4d142861526b67c3a9d73f74ba6aa1
- SHA256
  
  cfd3ebffec25887e5a8f3e1825037f906cb350809d80e12c630c2b145be9a919
- SHA512
  
  7f00375bc621aa180bbd01a5d57bfff5e715dc06a7f9789ccecd00ee3985ec29fb5cc75554bb6940cb8d8b21d286b0ba35bd0865526c16627ef0229291ce3361
- SSDEEP
  
  1536:T4442d3Hn+It/l2jcc0lbxOqTgZ+XpWWWt2XKfP6z:V2jcc0lbxOKlp3a36z
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Deletes itself
- Process spawned suspicious child process
  This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy