34683184956ac22bf8dbc9d3b8cc77961029956ad83b94b10c7d25fc1382dcd8 | Triage

Submit
Reports

Overview

overview

Static

static

8

SecuriteIn...53.xls

windows7-x64

SecuriteIn...53.xls

windows10-2004-x64

Sharing

General

Target

SecuriteInfo.com.XF.AShadow.1205.19070.1053.xlsx
Size

36KB
Sample

230330-3kfh9shb8z
MD5

623320e71aeb5208d72fa2e0bd074f21
SHA1

edb0a1f429c923abb7eb9c7e254c74fcd31f2585
SHA256

34683184956ac22bf8dbc9d3b8cc77961029956ad83b94b10c7d25fc1382dcd8
SHA512

3cc1ed92086059e8d44e40691a6af7243c008872a42252fee1e81277714961e77f5147ef3409f1709d5e2d6ea5a24a95dd95b5039cd686d479b65f09e2c00882
SSDEEP

768:+PqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJsU2+PA5I0s5Y:Cok3hbdlylKsgqopeJBWhZFGkE+cL2Np

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

SecuriteInfo.com.XF.AShadow.1205.19070.1053.xls

Resource

win7-20230220-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

SecuriteInfo.com.XF.AShadow.1205.19070.1053.xls

Resource

win10v2004-20230220-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Extracted

Language

xlm4.0

Source

URLs

xlm40.dropper

https://syracuse.best/wp-data.php

Targets

- Target
  
  SecuriteInfo.com.XF.AShadow.1205.19070.1053.xlsx
- Size
  
  36KB
- MD5
  
  623320e71aeb5208d72fa2e0bd074f21
- SHA1
  
  edb0a1f429c923abb7eb9c7e254c74fcd31f2585
- SHA256
  
  34683184956ac22bf8dbc9d3b8cc77961029956ad83b94b10c7d25fc1382dcd8
- SHA512
  
  3cc1ed92086059e8d44e40691a6af7243c008872a42252fee1e81277714961e77f5147ef3409f1709d5e2d6ea5a24a95dd95b5039cd686d479b65f09e2c00882
- SSDEEP
  
  768:+PqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJsU2+PA5I0s5Y:Cok3hbdlylKsgqopeJBWhZFGkE+cL2Np
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy