Overview

overview

10

Static

static

1

NEW ORDER.xls

windows7-x64

10

NEW ORDER.xls

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01/08/2023, 10:45

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    NEW ORDER.xls

  • Size

    1.7MB

  • MD5

    345dc5533c4c20b89d20e75aff3023fe

  • SHA1

    d05b645116d0ee6806fb9e4026220aac3e0709bd

  • SHA256

    7332e56b52d0993782b3e13e6ebcfb45d6fdb7367e46a3eafe1bae387817ccef

  • SHA512

    d140bf41d169e12539437ca7a0e1e97c64d0059d2d3112a280d8e862a35a5f1c61b68df94b3b0fe374824b33ac83dfe65be9c2d1241ffbfdc583be7060bdaaf7

  • SSDEEP

    49152:tQmmQ30kupp6VNQmmQ308556V8iNhv3tBfXCnSgk6+iv:tpmQkkamNpmQkOm8MhrCA6

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SetWindowsHookEx 12 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\NEW ORDER.xls"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    PID:2328

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Content.MSO\FC47398E.emf
    Filesize

    1.4MB

    MD5

    a01b9617553432807b9b58025b338d97

    SHA1

    439bdcc450408b9735b2428c2d53d2e6977fa58c

    SHA256

    7a0426ed2e2349916969ff7087c0f76089fb8ce7f4627f3d11ccbc1aaefcedce

    SHA512

    312cc2563fa865d6a939fea85a520627c73ed9a95bafc98c89495f21d535dc658825be74b64f0f5c5815d1d234fc6e77a71779247e4973e39ba8dccec2f09bee

    Download Submit

  • memory/2328-148-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-154-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-136-0x00007FFE7E190000-0x00007FFE7E1A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-138-0x00007FFE7E190000-0x00007FFE7E1A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-137-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-140-0x00007FFE7E190000-0x00007FFE7E1A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-139-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-141-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-142-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-143-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-144-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-145-0x00007FFE7BC40000-0x00007FFE7BC50000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-146-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-133-0x00007FFE7E190000-0x00007FFE7E1A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-134-0x00007FFE7E190000-0x00007FFE7E1A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-147-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-165-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-151-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-152-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-153-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-149-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-155-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-150-0x00007FFE7BC40000-0x00007FFE7BC50000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-166-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-135-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2328-204-0x00007FFE7E190000-0x00007FFE7E1A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-205-0x00007FFE7E190000-0x00007FFE7E1A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-206-0x00007FFE7E190000-0x00007FFE7E1A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-207-0x00007FFE7E190000-0x00007FFE7E1A0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2328-208-0x00007FFEBE110000-0x00007FFEBE305000-memory.dmp

    Filesize

    2.0MB

    Download