e421b41a8f1c2d9c8635590c4d1044b5e8848d737b1c735d738f19e4dd3efadc | Triage

Submit
Reports

Overview

overview

8

Static

static

1

Advance TT Slip.xlam

windows7-x64

8

Advance TT Slip.xlam

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

Target

Advance TT Slip.xlam.xlsx
Size

608KB
Sample

231011-pfw4kagf55
MD5

8c45abf62a65da6e3c6f3679867ac5f6
SHA1

64304d587df206901bb53cb5da16c43d674c5de0
SHA256

e421b41a8f1c2d9c8635590c4d1044b5e8848d737b1c735d738f19e4dd3efadc
SHA512

59be2c1a0454128f19a6e907fa40475ecf8dd1e3d7b4d52b97138f78ac6f855b1a0b1eedb0b010c2b37f96af33df897418c39e0b9161caf75e08896531bf285e
SSDEEP

12288:e/nWmxuO42FuW970S5h8L/8hUlQwFTSs6szS96fT2XRn4yYu2Z2ZUuwpH:gj42tZzKbFTSbo+6r2R4ycN

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

Advance TT Slip.xlam

Resource

win7-20230831-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

Advance TT Slip.xlam

Resource

win10v2004-20230915-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  Advance TT Slip.xlam.xlsx
- Size
  
  608KB
- MD5
  
  8c45abf62a65da6e3c6f3679867ac5f6
- SHA1
  
  64304d587df206901bb53cb5da16c43d674c5de0
- SHA256
  
  e421b41a8f1c2d9c8635590c4d1044b5e8848d737b1c735d738f19e4dd3efadc
- SHA512
  
  59be2c1a0454128f19a6e907fa40475ecf8dd1e3d7b4d52b97138f78ac6f855b1a0b1eedb0b010c2b37f96af33df897418c39e0b9161caf75e08896531bf285e
- SSDEEP
  
  12288:e/nWmxuO42FuW970S5h8L/8hUlQwFTSs6szS96fT2XRn4yYu2Z2ZUuwpH:gj42tZzKbFTSbo+6r2R4ycN
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy