245ce9ad11a30c9676c1e395534ecb503f1893bf0ec18d4cd8e46779ede5cbc8 | Triage

Submit
Reports

Overview

overview

Static

static

8

6c57a73166...87.xls

windows7-x64

6c57a73166...87.xls

windows10-2004-x64

Sharing

General

Target

6c57a7316681c265364620091d0c3987
Size

165KB
Sample

230314-kqej2sge3t
MD5

6c57a7316681c265364620091d0c3987
SHA1

7bb5f4e9c81fb1edd4082aaee065815b255cc2c4
SHA256

245ce9ad11a30c9676c1e395534ecb503f1893bf0ec18d4cd8e46779ede5cbc8
SHA512

1efaa1189ae8ea5ffe54c2a58d910e444096e0d371b60bd47bb045fd96de15894a2c16ff407c73917e585a38a1024cd15c2c050fa4f61421053abea4e1c7be06
SSDEEP

3072:xAOmmA2jcc0lbxOGXJtXwygPQ6VCBxVCS:M+P

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

6c57a7316681c265364620091d0c3987.xls

Resource

win7-20230220-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

6c57a7316681c265364620091d0c3987.xls

Resource

win10v2004-20230220-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  6c57a7316681c265364620091d0c3987
- Size
  
  165KB
- MD5
  
  6c57a7316681c265364620091d0c3987
- SHA1
  
  7bb5f4e9c81fb1edd4082aaee065815b255cc2c4
- SHA256
  
  245ce9ad11a30c9676c1e395534ecb503f1893bf0ec18d4cd8e46779ede5cbc8
- SHA512
  
  1efaa1189ae8ea5ffe54c2a58d910e444096e0d371b60bd47bb045fd96de15894a2c16ff407c73917e585a38a1024cd15c2c050fa4f61421053abea4e1c7be06
- SSDEEP
  
  3072:xAOmmA2jcc0lbxOGXJtXwygPQ6VCBxVCS:M+P
Score

10^/10

macro xlm
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Suspicious Office macro
  Office document equipped with 4.0 macros.
  macro xlm
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy