Overview

overview

10

Static

static

1

document.xlsm

windows7-x64

1

document.xlsm

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    5b852be48e51125b3f89fab367b0b61c

  • Size

    70KB

  • Sample

    240114-wwr8wadca7

  • MD5

    5b852be48e51125b3f89fab367b0b61c

  • SHA1

    c6df3377ea0b25f6c1fdbdf7796e8b6e4406ea05

  • SHA256

    a61126ef504fe725e3f97c08b2ba859a63ddbe32c235a5d6bd2cc228485feaef

  • SHA512

    de12060c83fb285e2f0cc3223515e87965ebd862a4227761ab58dc05a0a4cd452da3e6db83cd4e3c46937e37d0bf4d9c85099d8b2cfdd7b5a3ddda1e142d908c

  • SSDEEP

    1536:XwUlpU7L1fTRaO6EaYmcvW8KHsdLl9KEV574rzVJd:XBU75bThLvEHifK5t

Score
10/10

Malware Config

Targets

    • Target

      document.xlsm

    • Size

      51KB

    • MD5

      aece39df5e4d5279e07927d325939cbc

    • SHA1

      121047ee221f7ed52ddc29b9f3d212e44cfdce6c

    • SHA256

      6253445466bb93117a50f6fe0eba79dc6a6bf8cbf48061fc3039227509de441f

    • SHA512

      6237bb9cfbd137cb5a81ff1559f58490df03b6196986ea0fa341cadd0b8e6c05319436abdbca19c099775989211a14bea04651be07462bf263ab93c7530a354c

    • SSDEEP

      1536:T+J9Kt8IrZHey7gGPj/De5lSX7ZYCASQAMh98:wihjkIX7RASA

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks