Overview

overview

10

Static

static

1

New Order ...T.xlam

windows7-x64

10

New Order ...T.xlam

windows10-2004-x64

1

Analysis

  • max time kernel
    139s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230703-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28-08-2023 08:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    New Order PO2087441006AUGUST.xlam

  • Size

    715KB

  • MD5

    34c74ed2300a242fb0c974a51c8c72e3

  • SHA1

    5221f4f8f3d4c208cdba6933ed4eb9d6e6919021

  • SHA256

    d4af8019f4fb6f832ad72af1304293684e5299a6f263228206efb74569d10e4b

  • SHA512

    c6d32a3055abb916623c0d20e18453686b317da29a43a5e8a0b690eeb4b90274051f5bbd50ac05a9170770028f569a43e7d9ed904326b94476c67592ac60f2df

  • SSDEEP

    12288:fu51V6q8xfTVjtiawK3VVOnjBmNB0d7UFBwYdG+IqK3uZuCnPO6rXL:fHZjUawOGgNBc7EW4GhqKj0PdXL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: AddClipboardFormatListener 1 IoCs
  • Suspicious use of SetWindowsHookEx 8 IoCs

Processes

  • C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE
    "C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE" "C:\Users\Admin\AppData\Local\Temp\New Order PO2087441006AUGUST.xlam"
    1⤵
    • Suspicious behavior: AddClipboardFormatListener
    • Suspicious use of SetWindowsHookEx
    PID:2856

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2856-0-0x00007FFECB4D0000-0x00007FFECB4E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-1-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-3-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-2-0x00007FFECB4D0000-0x00007FFECB4E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-4-0x00007FFECB4D0000-0x00007FFECB4E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-5-0x00007FFECB4D0000-0x00007FFECB4E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-6-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-7-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-8-0x00007FFECB4D0000-0x00007FFECB4E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-9-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-10-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-11-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-12-0x00007FFEC9410000-0x00007FFEC9420000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-13-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-14-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-15-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-17-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-18-0x00007FFEC9410000-0x00007FFEC9420000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-19-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-16-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-20-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-21-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-22-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-23-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-25-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-26-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-30-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-45-0x00007FFECB4D0000-0x00007FFECB4E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-46-0x00007FFECB4D0000-0x00007FFECB4E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-47-0x00007FFECB4D0000-0x00007FFECB4E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-49-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-48-0x00007FFECB4D0000-0x00007FFECB4E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2856-50-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-52-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download

  • memory/2856-51-0x00007FFF0B450000-0x00007FFF0B645000-memory.dmp

    Filesize

    2.0MB

    Download