Overview

overview

10

Static

static

8

4590cf370c...d7.xls

windows7-x64

10

4590cf370c...d7.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4590cf370ce0f92252f7bed7174715d7

  • Size

    95KB

  • Sample

    230131-v57t9ahc92

  • MD5

    4590cf370ce0f92252f7bed7174715d7

  • SHA1

    08bd23f2c0dec73ad0c4b73f7a79b7fac607af83

  • SHA256

    61b1dcf1421055070d7008f46e50b49b8875ce74497bf0da99e64575660c1887

  • SHA512

    a6073af124c10a87c5e5ab940c51cea4a041f87592b59c0a8dcb7b2eda34205022407d60b6f9edaf8e23a0d1134c514bbe54c95770386651d4a46dcd9590cf5c

  • SSDEEP

    1536:wuuuoHPa4Rz/Sbj13z/vHfQse0Z95rt3rYMPaw2jcc0lbxOvTgEfoRt/WwF16Qm:vt3iw2jcc0lbxOrxGphm

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      4590cf370ce0f92252f7bed7174715d7

    • Size

      95KB

    • MD5

      4590cf370ce0f92252f7bed7174715d7

    • SHA1

      08bd23f2c0dec73ad0c4b73f7a79b7fac607af83

    • SHA256

      61b1dcf1421055070d7008f46e50b49b8875ce74497bf0da99e64575660c1887

    • SHA512

      a6073af124c10a87c5e5ab940c51cea4a041f87592b59c0a8dcb7b2eda34205022407d60b6f9edaf8e23a0d1134c514bbe54c95770386651d4a46dcd9590cf5c

    • SSDEEP

      1536:wuuuoHPa4Rz/Sbj13z/vHfQse0Z95rt3rYMPaw2jcc0lbxOvTgEfoRt/WwF16Qm:vt3iw2jcc0lbxOrxGphm

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

    behavioral1behavioral2

MITRE ATT&CK Matrix

Collection

    Command and Control

      Credential Access

        Defense Evasion

        Discovery

        Execution

          Exfiltration

            Impact

              Initial Access

                Lateral Movement

                  Persistence

                    Privilege Escalation

                      Tasks