634ee891ce2d174fcea605f3549585d13afa2be77a7b1634a1a3637aae2a6cf5 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

f8f36bc293...99.xls

windows7-x64

8

f8f36bc293...99.xls

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

Target

18c55c7221e979c7dfd36a8fbb9e7b81.bin
Size

1021KB
Sample

230308-bc29hscf6y
MD5

b61bbdebbedc71abbc12a9d4f22e943b
SHA1

213454ced42b771e6750443ec3674e658269a01f
SHA256

634ee891ce2d174fcea605f3549585d13afa2be77a7b1634a1a3637aae2a6cf5
SHA512

81b4f096f20b9e50150c3f5a7128cf5826d7eed9dc7c5d6b6ae8d817a569f8bcd7a8308c8f388a1a86b98bbba9ff07c091f9ee301a3a911b2aa6c7b3ffe94180
SSDEEP

24576:eNY9vw6EgODSD2Q7axjgUngj3UHgdgPeQVjhrfWmB6L0WLT:ewvGgEuG3gTUAdcVjhrB0hv

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

f8f36bc29327d52d324ff8d2b7f332d0e00f1991e96406aae74ded560631cc99.xls

Resource

win7-20230220-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

f8f36bc29327d52d324ff8d2b7f332d0e00f1991e96406aae74ded560631cc99.xls

Resource

win10v2004-20230220-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  f8f36bc29327d52d324ff8d2b7f332d0e00f1991e96406aae74ded560631cc99.xls
- Size
  
  1.2MB
- MD5
  
  18c55c7221e979c7dfd36a8fbb9e7b81
- SHA1
  
  169c0f765fde44cddb8eca882b0b6a15e7f70536
- SHA256
  
  f8f36bc29327d52d324ff8d2b7f332d0e00f1991e96406aae74ded560631cc99
- SHA512
  
  fb4692390470a50598d72c95f844dce1715ab6c9a630682883756c9e66baf53d84ed41ff423f228644d738ac4405c61aed14006cba27f66d40f36e13ac79ed8d
- SSDEEP
  
  24576:SLKfBftHlxFWQmmav30xoBb7tHlx/WQmmav30xA6Ff0BPwkDvG8ffqRv57:SLKfn7EQmmQ30S9N7uQmmQ30K6B2PwkE
Score

8^/10
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
- Uses the VBS compiler for execution
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Exploitation for Client Execution

Scripting

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Scripting

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy