Overview

overview

10

Static

static

1

order #393405.xls

windows7-x64

10

order #393405.xls

windows10-2004-x64

1

Analysis

  • max time kernel
    142s
  • max time network
    147s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/08/2023, 08:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    order #393405.xls

  • Size

    1.3MB

  • MD5

    a913096f787c53f96a34dfff28a68ac1

  • SHA1

    43ea14976d150ca3146c0fde2f44947df9e2f4af

  • SHA256

    da1f2444a6a87363c210ff73a4111ccea458b1d35b2cbe7c1c54fa471c8f752f

  • SHA512

    ec32f7db5917cfb7162d32386c3dd38cc1373a6635668c3ffe158130e8d4d1eeadb69ca0a6ee6fb9d09168b83e24f1b9ee923d96a7f668b2a9d09f0e3a32d81f

  • SSDEEP

    24576:UaZy0w6VgjKaWlEzp7aUZydw6VzjKaWlEzp7azzd6f/b7QAUQp5E/zwwx:UE86VgjKjOzRJ6VzjKjOzEdU7/UX/zf

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of FindShellTrayWindow 2 IoCs
  • Suspicious use of SetWindowsHookEx 12 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\order #393405.xls"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    PID:4316

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\INetCache\Content.MSO\216C32F.emf
    Filesize

    1.4MB

    MD5

    d69c22a341e111feea69df6d8c655d60

    SHA1

    ac862337f2efa43627508927f5052ce694012206

    SHA256

    05b2053bf1d070d6034b45cd79b54d80da3c6d88d016671a345e75048b1a68db

    SHA512

    d4db33ed046b3c9ba09c4b3feac17b1fe2e75fce67f4154fd795d504708c295a1e3c8331ed3d6c3ee9950c936c4cc25b5d690558c26f2e1f7771bd5eb275822c

    Download Submit

  • memory/4316-146-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-194-0x00007FFD65DD0000-0x00007FFD65DE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-137-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-138-0x00007FFD65DD0000-0x00007FFD65DE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-139-0x00007FFD65DD0000-0x00007FFD65DE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-140-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-141-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-142-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-143-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-136-0x00007FFD65DD0000-0x00007FFD65DE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-144-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-133-0x00007FFD65DD0000-0x00007FFD65DE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-135-0x00007FFD65DD0000-0x00007FFD65DE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-148-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-145-0x00007FFD63830000-0x00007FFD63840000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-149-0x00007FFD63830000-0x00007FFD63840000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-150-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-151-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-159-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-134-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-193-0x00007FFD65DD0000-0x00007FFD65DE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-147-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/4316-195-0x00007FFD65DD0000-0x00007FFD65DE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-196-0x00007FFD65DD0000-0x00007FFD65DE0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/4316-197-0x00007FFDA5D50000-0x00007FFDA5F45000-memory.dmp

    Filesize

    2.0MB

    Download