3aba22f15475917127717c2e212d04a04e0b75c513681cb85de9fa1623637ce0 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

PO-58101.xls

windows7-x64

8

PO-58101.xls

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

Target

PO-58101.xls
Size

1.2MB
Sample

231010-m3k9gaeh82
MD5

236da22e6156640a59aa5339e68394b1
SHA1

9e19df439bdb1498e88a6c520ada36eb63705ec4
SHA256

3aba22f15475917127717c2e212d04a04e0b75c513681cb85de9fa1623637ce0
SHA512

fb84535b88d4ca933fdec9285282e116332e4b403163029019b025d1e7a6e5eac5eda47dc2a20656a89fc2f8bc338ac02c5cd281556f44a31b66d93bf6ee4de2
SSDEEP

24576:gWQmmav30xYBRZy6w6VMAI+gkZy8w6VCwRAyoCp2Nvb+8MfEhNC/uwxx:1QmmQ30C66VFE6VRI+nfKC2O

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

PO-58101.xls

Resource

win7-20230831-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

PO-58101.xls

Resource

win10v2004-20230915-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  PO-58101.xls
- Size
  
  1.2MB
- MD5
  
  236da22e6156640a59aa5339e68394b1
- SHA1
  
  9e19df439bdb1498e88a6c520ada36eb63705ec4
- SHA256
  
  3aba22f15475917127717c2e212d04a04e0b75c513681cb85de9fa1623637ce0
- SHA512
  
  fb84535b88d4ca933fdec9285282e116332e4b403163029019b025d1e7a6e5eac5eda47dc2a20656a89fc2f8bc338ac02c5cd281556f44a31b66d93bf6ee4de2
- SSDEEP
  
  24576:gWQmmav30xYBRZy6w6VMAI+gkZy8w6VCwRAyoCp2Nvb+8MfEhNC/uwxx:1QmmQ30C66VFE6VRI+nfKC2O
Score

8^/10
- Blocklisted process makes network request
- Downloads MZ/PE file
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy