Overview

overview

10

Static

static

1

newlmfaonig.xlsm

windows7-x64

10

newlmfaonig.xlsm

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    newlmfaonig.xlsm

  • Size

    717KB

  • Sample

    230309-ej316shd2v

  • MD5

    c6d02b46464a4fb78c4bdbb1ad631d1d

  • SHA1

    9e56342c45cdd68e5cf665742af5a59b78846c72

  • SHA256

    0eb47cc0b2db2ad534c8b37bb1d8de74a1674391c4fea412febbf19daa66dba6

  • SHA512

    c1bccc7b649f1203e776c2e36e9269d0906e2621aea8b90df5eb1544591a32ff54c6bda0fac382465b52506f8721429435d9be3733664d8a0442298bf45879a8

  • SSDEEP

    12288:DIS1W2Qx9pncFOL6hA1jB9oLrB/cAwGsdWUmGw+J8E/BfT5eCVmSfxHtOMzs3:US0OOkM9QN0AwRdm0DBfT5hRJd43

Score
10/10

Malware Config

Targets

    • Target

      newlmfaonig.xlsm

    • Size

      717KB

    • MD5

      c6d02b46464a4fb78c4bdbb1ad631d1d

    • SHA1

      9e56342c45cdd68e5cf665742af5a59b78846c72

    • SHA256

      0eb47cc0b2db2ad534c8b37bb1d8de74a1674391c4fea412febbf19daa66dba6

    • SHA512

      c1bccc7b649f1203e776c2e36e9269d0906e2621aea8b90df5eb1544591a32ff54c6bda0fac382465b52506f8721429435d9be3733664d8a0442298bf45879a8

    • SSDEEP

      12288:DIS1W2Qx9pncFOL6hA1jB9oLrB/cAwGsdWUmGw+J8E/BfT5eCVmSfxHtOMzs3:US0OOkM9QN0AwRdm0DBfT5hRJd43

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks