25e7a5ff8ca830bccda9a6617b31fb3992d4f780444cf3adc8cfb8056f26dd58 | Triage

Submit
Reports

Overview

overview

8

Static

static

1

RFQ-T56797W_1.xlsx

windows7-x64

8

RFQ-T56797W_1.xlsx

windows10-2004-x64

1

Sharing

General

Target

RFQ-T56797W_1.xlsx
Size

1.2MB
Sample

231114-plndlscc4t
MD5

138d7d8a55bef05ac6368488b3c9630d
SHA1

f9e93ed382d3005a7575443369207f2c3339309b
SHA256

25e7a5ff8ca830bccda9a6617b31fb3992d4f780444cf3adc8cfb8056f26dd58
SHA512

5ad15b60f1e97b83ccd32b4bb06716552e429d4bec0cee78efa99a545ee05d4abbc6f7c896f7ce079431d90e6758aa4cb68a98672511e9f360a8509d1bf621f6
SSDEEP

12288:YWdBCwo3NVvUP/hkRQFTvW7HKReRSR0H8CK/+d5NUzsChpgUWxt7HCZoUPYG0hmL:YgtI/u/httvKaey0cgzobrhPEm+RlDS

Score

8^/10

Static task

static1

Behavioral task

behavioral1

Sample

RFQ-T56797W_1.xlsx

Resource

win7-20231023-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

RFQ-T56797W_1.xlsx

Resource

win10v2004-20231020-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  RFQ-T56797W_1.xlsx
- Size
  
  1.2MB
- MD5
  
  138d7d8a55bef05ac6368488b3c9630d
- SHA1
  
  f9e93ed382d3005a7575443369207f2c3339309b
- SHA256
  
  25e7a5ff8ca830bccda9a6617b31fb3992d4f780444cf3adc8cfb8056f26dd58
- SHA512
  
  5ad15b60f1e97b83ccd32b4bb06716552e429d4bec0cee78efa99a545ee05d4abbc6f7c896f7ce079431d90e6758aa4cb68a98672511e9f360a8509d1bf621f6
- SSDEEP
  
  12288:YWdBCwo3NVvUP/hkRQFTvW7HKReRSR0H8CK/+d5NUzsChpgUWxt7HCZoUPYG0hmL:YgtI/u/httvKaey0cgzobrhPEm+RlDS
Score

8^/10
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Exploitation for Client Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy