Overview

overview

8

Static

static

1

Ordendecompra.xlsx

windows7-x64

8

Ordendecompra.xlsx

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Ordendecompra.xlsx

  • Size

    680KB

  • Sample

    230518-rhvpmabc5x

  • MD5

    7f27ca895da26b7fb71304a9037cf905

  • SHA1

    6a19a428564fc19529eaa83bc11319124d7b135c

  • SHA256

    4742d662235894ea1a0ee5eae0b8ab667e61ccda131fe816e462b17c5409bb1e

  • SHA512

    6ac4f86e97da8f325ffd730b03e3c7648c86aa44774c8b7dbe03d2b07d6ae2571ab40381f03fce9a976e3a43e2a3a58d7a53f34aaf38d8df205ad5cb1c385017

  • SSDEEP

    12288:wr+OwhLLVTW+CTiXvqVfAabxRMRpZsRviyRLtVorsUetdAQ:w7EL5kT7VlL8IRaCBUbQ

Score
8/10

Malware Config

Targets

    • Target

      Ordendecompra.xlsx

    • Size

      680KB

    • MD5

      7f27ca895da26b7fb71304a9037cf905

    • SHA1

      6a19a428564fc19529eaa83bc11319124d7b135c

    • SHA256

      4742d662235894ea1a0ee5eae0b8ab667e61ccda131fe816e462b17c5409bb1e

    • SHA512

      6ac4f86e97da8f325ffd730b03e3c7648c86aa44774c8b7dbe03d2b07d6ae2571ab40381f03fce9a976e3a43e2a3a58d7a53f34aaf38d8df205ad5cb1c385017

    • SSDEEP

      12288:wr+OwhLLVTW+CTiXvqVfAabxRMRpZsRviyRLtVorsUetdAQ:w7EL5kT7VlL8IRaCBUbQ

    Score
    8/10

    • Blocklisted process makes network request

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks