bdb487b05b85e62b702f6f5af347da6712569b34e5fe59c84b236f18d951a354 | Triage

Submit
Reports

Overview

overview

Static

static

8

7c0923f871...53.xls

windows7-x64

7c0923f871...53.xls

windows10-2004-x64

Sharing

General

Target

7c0923f87130779385ea438e411a7053
Size

100KB
Sample

230308-hz3l5aea9z
MD5

7c0923f87130779385ea438e411a7053
SHA1

ccf819e726ba1b56003b8ca34e11e76f2a21368f
SHA256

bdb487b05b85e62b702f6f5af347da6712569b34e5fe59c84b236f18d951a354
SHA512

d38a359e350be853cbc1a1893bfbe1c902e65bc45798c1de5cf8639e38a53ea625bb62b14d1bc31b9d3a4f059b1e573bef0f2879fe6de7a599112ba66222a614
SSDEEP

3072:soz9CZ4mJWRMT67EI7VvsD9x4UuQ2jvNeNZ8q2jcc0lbxOwlU4c7R1WXyH:soz9CZ4mJWRMT67EI7VvsD9x4UuQ2jv8

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

7c0923f87130779385ea438e411a7053.xls

Resource

win7-20230220-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

7c0923f87130779385ea438e411a7053.xls

Resource

win10v2004-20230220-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  7c0923f87130779385ea438e411a7053
- Size
  
  100KB
- MD5
  
  7c0923f87130779385ea438e411a7053
- SHA1
  
  ccf819e726ba1b56003b8ca34e11e76f2a21368f
- SHA256
  
  bdb487b05b85e62b702f6f5af347da6712569b34e5fe59c84b236f18d951a354
- SHA512
  
  d38a359e350be853cbc1a1893bfbe1c902e65bc45798c1de5cf8639e38a53ea625bb62b14d1bc31b9d3a4f059b1e573bef0f2879fe6de7a599112ba66222a614
- SSDEEP
  
  3072:soz9CZ4mJWRMT67EI7VvsD9x4UuQ2jvNeNZ8q2jcc0lbxOwlU4c7R1WXyH:soz9CZ4mJWRMT67EI7VvsD9x4UuQ2jv8
Score

10^/10

macro xlm
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Suspicious Office macro
  Office document equipped with 4.0 macros.
  macro xlm
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy