Overview

overview

8

Static

static

1

CIF Order 083234.xls

windows7-x64

8

CIF Order 083234.xls

windows10-2004-x64

1

Analysis

  • max time kernel
    148s
  • max time network
    132s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    03/08/2023, 07:12

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    CIF Order 083234.xls

  • Size

    1.7MB

  • MD5

    d45b28567911c9de346e59dcc9f720d9

  • SHA1

    2e138c63d67bc9644fc56ae27033e7611343201e

  • SHA256

    a85d683fc69066378a42a45b211d0ffb519f287157658cae058d228ff98a0d5b

  • SHA512

    50d92bc05633cd5cec0540e5b714c82f07b8695336b7591da2cbde73bf988da883fca34b1a40ef772dd263a5fb63f6dd26449440ab774d9ffab3f54fe31050ea

  • SSDEEP

    49152:kQmmQ30Rupp6VBQmmQ3085B6V8iNhv3t8fXCn7ikgWiv:kpmQkRamBpmQkKm8Mh8C7i

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SetWindowsHookEx 12 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\CIF Order 083234.xls"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    PID:3000

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Content.MSO\755310F7.emf
          Filesize

          1.4MB

          MD5

          a01b9617553432807b9b58025b338d97

          SHA1

          439bdcc450408b9735b2428c2d53d2e6977fa58c

          SHA256

          7a0426ed2e2349916969ff7087c0f76089fb8ce7f4627f3d11ccbc1aaefcedce

          SHA512

          312cc2563fa865d6a939fea85a520627c73ed9a95bafc98c89495f21d535dc658825be74b64f0f5c5815d1d234fc6e77a71779247e4973e39ba8dccec2f09bee

          Download Submit

        • memory/3000-158-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-152-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-139-0x00007FFDF04F0000-0x00007FFDF0500000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-140-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-142-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-141-0x00007FFDF04F0000-0x00007FFDF0500000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-144-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-143-0x00007FFDF04F0000-0x00007FFDF0500000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-145-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-147-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-146-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-149-0x00007FFDEE250000-0x00007FFDEE260000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-150-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-151-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-148-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-168-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-153-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-154-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-155-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-156-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-157-0x00007FFDEE250000-0x00007FFDEE260000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-136-0x00007FFDF04F0000-0x00007FFDF0500000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-138-0x00007FFDF04F0000-0x00007FFDF0500000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-159-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-187-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-171-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-175-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-176-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-177-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-178-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-179-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-180-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-181-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-182-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-183-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-184-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-185-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-186-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-170-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-188-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-137-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download

        • memory/3000-223-0x00007FFDF04F0000-0x00007FFDF0500000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-224-0x00007FFDF04F0000-0x00007FFDF0500000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-225-0x00007FFDF04F0000-0x00007FFDF0500000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-226-0x00007FFDF04F0000-0x00007FFDF0500000-memory.dmp

          Filesize

          64KB

          Download

        • memory/3000-227-0x00007FFE30470000-0x00007FFE30665000-memory.dmp

          Filesize

          2.0MB

          Download