Overview

overview

10

Static

static

1

3823aa0c8a...b.xlsm

windows7-x64

10

3823aa0c8a...b.xlsm

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    3823aa0c8a9a48d236cce65b53bc9c6b

  • Size

    47KB

  • Sample

    231231-qs383scedk

  • MD5

    3823aa0c8a9a48d236cce65b53bc9c6b

  • SHA1

    01b0eaa8bdcb1b3b93468c04919bf2fd16bceccc

  • SHA256

    20f8bd13bdcb85b3586ed8373a98722550aae1b898157779d16d7f19833b0d6a

  • SHA512

    79cd6cf9347379644ce5b379bc88f8c12e43ec8656c961176dd89c18a11fa3f0f50d12bc23cdc478f2cc51171047966e32ad768f40c3579a7b68c1001d706835

  • SSDEEP

    768:hKphj2IvOGNWqfISGBnXKIg2TPacxD5SGj2y+bgPnrHS4JwM5iQ/6er8LqrXoMEY:4WaOVAIrBnkWycxlr2gPnW4Jt54er1V

Score
10/10

Malware Config

Targets

    • Target

      3823aa0c8a9a48d236cce65b53bc9c6b

    • Size

      47KB

    • MD5

      3823aa0c8a9a48d236cce65b53bc9c6b

    • SHA1

      01b0eaa8bdcb1b3b93468c04919bf2fd16bceccc

    • SHA256

      20f8bd13bdcb85b3586ed8373a98722550aae1b898157779d16d7f19833b0d6a

    • SHA512

      79cd6cf9347379644ce5b379bc88f8c12e43ec8656c961176dd89c18a11fa3f0f50d12bc23cdc478f2cc51171047966e32ad768f40c3579a7b68c1001d706835

    • SSDEEP

      768:hKphj2IvOGNWqfISGBnXKIg2TPacxD5SGj2y+bgPnrHS4JwM5iQ/6er8LqrXoMEY:4WaOVAIrBnkWycxlr2gPnW4Jt54er1V

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks