1a6ac9f7ca271aa203dd593c52d85e2e582582cea63147376bac10f6a5d670c4 | Triage

Submit
Reports

Overview

overview

Static

static

8

f2a1c99751...2f.xls

windows7-x64

f2a1c99751...2f.xls

windows10-2004-x64

Sharing

General

Target

f2a1c9975103b64aed0a66739cadd62f
Size

115KB
Sample

230314-kr8vaage5y
MD5

f2a1c9975103b64aed0a66739cadd62f
SHA1

c22b66c0be9da1246c7fc3ff7f61eef53c9077f5
SHA256

1a6ac9f7ca271aa203dd593c52d85e2e582582cea63147376bac10f6a5d670c4
SHA512

c518e44d308cef678dece6e21e6315b9b0639c24acbeb06adac12629fd7b22c7abc87649c2d6f241fe2bb2afd1c0d20e4d0b1c9eaaac8249554c0cf59a030312
SSDEEP

1536:iCCCzXPHmQv3ePaz4z1/sjLRSbfzvyjIRX3OglgA53NRKBqZncJtXw8lo0UviBub:kyjIFOglgA53NRKEmJtXwJOITpRyTW

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f2a1c9975103b64aed0a66739cadd62f.xls

Resource

win7-20230220-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

f2a1c9975103b64aed0a66739cadd62f.xls

Resource

win10v2004-20230220-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  f2a1c9975103b64aed0a66739cadd62f
- Size
  
  115KB
- MD5
  
  f2a1c9975103b64aed0a66739cadd62f
- SHA1
  
  c22b66c0be9da1246c7fc3ff7f61eef53c9077f5
- SHA256
  
  1a6ac9f7ca271aa203dd593c52d85e2e582582cea63147376bac10f6a5d670c4
- SHA512
  
  c518e44d308cef678dece6e21e6315b9b0639c24acbeb06adac12629fd7b22c7abc87649c2d6f241fe2bb2afd1c0d20e4d0b1c9eaaac8249554c0cf59a030312
- SSDEEP
  
  1536:iCCCzXPHmQv3ePaz4z1/sjLRSbfzvyjIRX3OglgA53NRKBqZncJtXw8lo0UviBub:kyjIFOglgA53NRKEmJtXwJOITpRyTW
Score

10^/10

macro xlm
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Suspicious Office macro
  Office document equipped with 4.0 macros.
  macro xlm
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy