General
-
Target
0fdb2054fa4a1b7b25f9c3cf0cc2db8f
-
Size
106KB
-
Sample
230314-ks8wnsee48
-
MD5
0fdb2054fa4a1b7b25f9c3cf0cc2db8f
-
SHA1
16ab79a4a1197ad48abcdabe92bc39600d1f06d6
-
SHA256
84971fddfd2fe4f8a9c7322f621ec7af1453d39871d94a25a1729b77f2b379d9
-
SHA512
7352a2b1f43977f9667a7242fcfb54e1a5426b35226defb11afdb2b2ad0608ad514d51fe976e5e23198eb90085ee89c68a6a0ec7bf7a5fe0b1acb024d778c5cc
-
SSDEEP
1536:ExWWWPio382UrjOKHbrzZ37LgP9xZ95NZh0WVbrz5z7ITkiD2g/LUcJtXweCv4EV:eWVbrzt7ITkDAXJtXwfv4DM
Behavioral task
behavioral1
Sample
0fdb2054fa4a1b7b25f9c3cf0cc2db8f.xls
Resource
win7-20230220-en
Malware Config
Targets
-
-
Target
0fdb2054fa4a1b7b25f9c3cf0cc2db8f
-
Size
106KB
-
MD5
0fdb2054fa4a1b7b25f9c3cf0cc2db8f
-
SHA1
16ab79a4a1197ad48abcdabe92bc39600d1f06d6
-
SHA256
84971fddfd2fe4f8a9c7322f621ec7af1453d39871d94a25a1729b77f2b379d9
-
SHA512
7352a2b1f43977f9667a7242fcfb54e1a5426b35226defb11afdb2b2ad0608ad514d51fe976e5e23198eb90085ee89c68a6a0ec7bf7a5fe0b1acb024d778c5cc
-
SSDEEP
1536:ExWWWPio382UrjOKHbrzZ37LgP9xZ95NZh0WVbrz5z7ITkiD2g/LUcJtXweCv4EV:eWVbrzt7ITkDAXJtXwfv4DM
-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Deletes itself
-