341033562d0b516e03b824004e8f43a88bbb0a6a7b22a4b937cec3566c430a51 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Request for Quotation.xlam.xlsx
Size

621KB
Sample

230802-wca59ahe4z
MD5

bd1034deed6e4e911d220770eed6fbe5
SHA1

a85be7fb82f4249c0736f873c7cca4b9a9613a39
SHA256

341033562d0b516e03b824004e8f43a88bbb0a6a7b22a4b937cec3566c430a51
SHA512

fa45bd6d156826e2459eeb65cba414ec1058f93725e0ebb67e12ad54d60cca2cae817cf254178577b7316ed49377ccf1dc7955834dfe0cecd738c3bafe1976e3
SSDEEP

12288:iIQTweo72u7Kj6ainYBPmGd4oZmS+jATovF2jtAdHj36hzO:tqno72eKj8YBP5ZmS+sTovmWD0q

Score

8^/10

Malware Config

Targets

- Target
  
  Request for Quotation.xlam.xlsx
- Size
  
  621KB
- MD5
  
  bd1034deed6e4e911d220770eed6fbe5
- SHA1
  
  a85be7fb82f4249c0736f873c7cca4b9a9613a39
- SHA256
  
  341033562d0b516e03b824004e8f43a88bbb0a6a7b22a4b937cec3566c430a51
- SHA512
  
  fa45bd6d156826e2459eeb65cba414ec1058f93725e0ebb67e12ad54d60cca2cae817cf254178577b7316ed49377ccf1dc7955834dfe0cecd738c3bafe1976e3
- SSDEEP
  
  12288:iIQTweo72u7Kj6ainYBPmGd4oZmS+jATovF2jtAdHj36hzO:tqno72eKj8YBP5ZmS+sTovmWD0q
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2