4558f033978faa42f216c6b8959640dc350777e96dd78eede5cb5a2ab33ae3a0 | Triage

Submit
Reports

Overview

overview

Static

static

8

17f224a588...9c.xls

windows7-x64

17f224a588...9c.xls

windows10-2004-x64

Sharing

General

Target

17f224a58860a89b42f99a163f53b99c
Size

96KB
Sample

230314-kv4dzaee68
MD5

17f224a58860a89b42f99a163f53b99c
SHA1

dd39cb90f95df58d207fa82c7788832388f2d9de
SHA256

4558f033978faa42f216c6b8959640dc350777e96dd78eede5cb5a2ab33ae3a0
SHA512

88f85a1940f76a6db7596dfc629d57ab84653cc5e687cb105110c2b0bc9a6fb421d510f7e70b5594836dc9a5352217e6409ccaca43e39e43d299f31df8c05cb7
SSDEEP

1536:TQQQWh8teVQczsQ8PzS1bLvJkqeV+yEGTeHByDoP12jcc0lbxOvTgZgm/M10QWK+:exC12jcc0lbxOrinJtXwz

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

17f224a58860a89b42f99a163f53b99c.xls

Resource

win7-20230220-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

17f224a58860a89b42f99a163f53b99c.xls

Resource

win10v2004-20230220-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  17f224a58860a89b42f99a163f53b99c
- Size
  
  96KB
- MD5
  
  17f224a58860a89b42f99a163f53b99c
- SHA1
  
  dd39cb90f95df58d207fa82c7788832388f2d9de
- SHA256
  
  4558f033978faa42f216c6b8959640dc350777e96dd78eede5cb5a2ab33ae3a0
- SHA512
  
  88f85a1940f76a6db7596dfc629d57ab84653cc5e687cb105110c2b0bc9a6fb421d510f7e70b5594836dc9a5352217e6409ccaca43e39e43d299f31df8c05cb7
- SSDEEP
  
  1536:TQQQWh8teVQczsQ8PzS1bLvJkqeV+yEGTeHByDoP12jcc0lbxOvTgZgm/M10QWK+:exC12jcc0lbxOrinJtXwz
Score

10^/10

macro xlm
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Suspicious Office macro
  Office document equipped with 4.0 macros.
  macro xlm
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Hidden Files and Directories

Privilege Escalation

Defense Evasion

Modify Registry

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy