Overview

overview

10

Static

static

8

0b1145386e...5.xlsm

windows7-x64

10

0b1145386e...5.xlsm

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0b1145386e54c133263fc6e8a9a71ed5

  • Size

    233KB

  • Sample

    231230-ch8txsgecr

  • MD5

    0b1145386e54c133263fc6e8a9a71ed5

  • SHA1

    425de0627c45d39118b4ab7e15e07fc97df1f31f

  • SHA256

    f03234e69c590e38fb19c15c19a1b1526da18d6ea8d2634ae9fd81dbf5168b2c

  • SHA512

    4ec6e54b0a4e578cd99113c77fe85ffac691f013cf4f78f052d48a51a9b8258ceea42c5666791444ebb752731a0e4bba1907f38ff042bc92ac26926f1c66a73e

  • SSDEEP

    3072:SjAeN0RKSwCchO7e/1GrpdXx6sj848QjWvpGtdWWDDEAB7VaQFhIcB6tOVRa1J:SDNSLcq+YXEsWpGj53ha7o+0O

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      0b1145386e54c133263fc6e8a9a71ed5

    • Size

      233KB

    • MD5

      0b1145386e54c133263fc6e8a9a71ed5

    • SHA1

      425de0627c45d39118b4ab7e15e07fc97df1f31f

    • SHA256

      f03234e69c590e38fb19c15c19a1b1526da18d6ea8d2634ae9fd81dbf5168b2c

    • SHA512

      4ec6e54b0a4e578cd99113c77fe85ffac691f013cf4f78f052d48a51a9b8258ceea42c5666791444ebb752731a0e4bba1907f38ff042bc92ac26926f1c66a73e

    • SSDEEP

      3072:SjAeN0RKSwCchO7e/1GrpdXx6sj848QjWvpGtdWWDDEAB7VaQFhIcB6tOVRa1J:SDNSLcq+YXEsWpGj53ha7o+0O

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks