General
-
Target
6113811029fb9b7ec51fc9d11da10262
-
Size
117KB
-
Sample
230221-vndvvahe7v
-
MD5
6113811029fb9b7ec51fc9d11da10262
-
SHA1
daa1eb79c2ca3c981ef097d7572600dacaf24e3d
-
SHA256
955f83ee442f33cd17e958b55b98a1967e23c9f7aa07f95457ccfed51ebeaffd
-
SHA512
5ff90a9e98dd5d6f8c4e24313d68d41ecb03d58397b9e157d980e0b41aaa42c26f5e274e0379895b31494f0aceff9fcd0f304e051e76d1713f196bc34ad0b911
-
SSDEEP
1536:rQQQQVqayzJtV8cbsQvPe8k1GYriCc1qUnOglgAS3NRKBq4/WwF1klo0UviBuEhw:sYmC2OglgAS3NRKEChHEQKxyTL
Malware Config
Targets
-
-
Target
6113811029fb9b7ec51fc9d11da10262
-
Size
117KB
-
MD5
6113811029fb9b7ec51fc9d11da10262
-
SHA1
daa1eb79c2ca3c981ef097d7572600dacaf24e3d
-
SHA256
955f83ee442f33cd17e958b55b98a1967e23c9f7aa07f95457ccfed51ebeaffd
-
SHA512
5ff90a9e98dd5d6f8c4e24313d68d41ecb03d58397b9e157d980e0b41aaa42c26f5e274e0379895b31494f0aceff9fcd0f304e051e76d1713f196bc34ad0b911
-
SSDEEP
1536:rQQQQVqayzJtV8cbsQvPe8k1GYriCc1qUnOglgAS3NRKBq4/WwF1klo0UviBuEhw:sYmC2OglgAS3NRKEChHEQKxyTL
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Suspicious Office macro
Office document equipped with 4.0 macros.
-
Deletes itself
-