c4d69fbcd35b96a817b486c346e8e2a07c3fad79f921c29385c508e2fd7a152f | Triage

Submit
Reports

Overview

overview

Static

static

8

a53a96d261...25.xls

windows7-x64

a53a96d261...25.xls

windows10-2004-x64

Sharing

General

Target

a53a96d26186ea3c09d845ebf6bdad25
Size

133KB
Sample

230314-ksxteaee44
MD5

a53a96d26186ea3c09d845ebf6bdad25
SHA1

b25393321687bf24dd3c7016f9642d097e9c425c
SHA256

c4d69fbcd35b96a817b486c346e8e2a07c3fad79f921c29385c508e2fd7a152f
SHA512

64b0407b89429b5fd2014fe988d4408d4e36eaf0eab760f3036aa1750b71aa99e607c9412fafcd1b6202bfcfda87d53c7c0c8ffb95e50bcc1919e7cf6aa17b18
SSDEEP

1536:mQQQQcF9NpLA6+IfWVbrzBh7ITkR620LkMg+cJtXweKVv4gS/rpMmm:lfWVbrzH7ITk9/H9JtXwlv4ll9m

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a53a96d26186ea3c09d845ebf6bdad25.xls

Resource

win7-20230220-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

a53a96d26186ea3c09d845ebf6bdad25.xls

Resource

win10v2004-20230221-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  a53a96d26186ea3c09d845ebf6bdad25
- Size
  
  133KB
- MD5
  
  a53a96d26186ea3c09d845ebf6bdad25
- SHA1
  
  b25393321687bf24dd3c7016f9642d097e9c425c
- SHA256
  
  c4d69fbcd35b96a817b486c346e8e2a07c3fad79f921c29385c508e2fd7a152f
- SHA512
  
  64b0407b89429b5fd2014fe988d4408d4e36eaf0eab760f3036aa1750b71aa99e607c9412fafcd1b6202bfcfda87d53c7c0c8ffb95e50bcc1919e7cf6aa17b18
- SSDEEP
  
  1536:mQQQQcF9NpLA6+IfWVbrzBh7ITkR620LkMg+cJtXweKVv4gS/rpMmm:lfWVbrzH7ITk9/H9JtXwlv4ll9m
Score

10^/10

macro xlm
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Suspicious Office macro
  Office document equipped with 4.0 macros.
  macro xlm
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy