Overview

overview

10

Static

static

3

CrystalDec...ed.dll

windows7-x64

1

CrystalDec...ed.dll

windows10-2004-x64

1

Templates/...10.xml

windows7-x64

1

Templates/...10.xml

windows10-2004-x64

1

Templates/...ML.xml

windows7-x64

1

Templates/...ML.xml

windows10-2004-x64

1

Templates/...10.xml

windows7-x64

1

Templates/...10.xml

windows10-2004-x64

1

Templates/...10.xml

windows7-x64

1

Templates/...10.xml

windows10-2004-x64

1

Templates/...te.htm

windows7-x64

1

Templates/...te.htm

windows10-2004-x64

1

TradingVie...15.exe

windows7-x64

10

TradingVie...15.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    136s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20230915-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20230915-enlocale:en-usos:windows10-2004-x64system
  • submitted
    19/09/2023, 16:01

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    Templates/Schemas/SchemaDoctoXML/SiiTypes_v10.xml

  • Size

    30KB

  • MD5

    dc45c51a2e3256a437e727cb0d7b4735

  • SHA1

    f65a9958aae3a87938d1da0857144410435dabd6

  • SHA256

    d10038241464c73d759949ec6f04f52c32c7a478e9e294bf91dc867b06d9fdee

  • SHA512

    451353d5fd0b9f62ab52c33bb6f22fa9659c4f354cfdcd68b6a05c5137a50dae062f250a85608dc529b9c449590a0ac2b24ab4812589263a0914a0f4d3a551fd

  • SSDEEP

    768:oBlcB/pB/wLOEMMsjeyD1AaZGVJ/EP171iPyr4KFTRUhlU1Hpx3:oBeBxBoLOEMMsjxxAaZGVJsP17cPyr4Y

Score
1/10

Malware Config

Signatures

Processes

  • C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
    "C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\Templates\Schemas\SchemaDoctoXML\SiiTypes_v10.xml"
    1⤵
      PID:1456

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • memory/1456-0-0x00007FF9A8470000-0x00007FF9A8480000-memory.dmp

            Filesize

            64KB

            Download

          • memory/1456-1-0x00007FF9E83F0000-0x00007FF9E85E5000-memory.dmp

            Filesize

            2.0MB

            Download

          • memory/1456-2-0x00007FF9E83F0000-0x00007FF9E85E5000-memory.dmp

            Filesize

            2.0MB

            Download

          • memory/1456-3-0x00007FF9E83F0000-0x00007FF9E85E5000-memory.dmp

            Filesize

            2.0MB

            Download

          • memory/1456-4-0x00007FF9E5F60000-0x00007FF9E6229000-memory.dmp

            Filesize

            2.8MB

            Download

          • memory/1456-5-0x00007FF9A8470000-0x00007FF9A8480000-memory.dmp

            Filesize

            64KB

            Download

          • memory/1456-6-0x00007FF9E83F0000-0x00007FF9E85E5000-memory.dmp

            Filesize

            2.0MB

            Download