Overview

overview

10

Static

static

8

88385d7c98...a.xlsb

windows7-x64

10

88385d7c98...a.xlsb

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    88385d7c98280b9a188a499c47058b5a

  • Size

    167KB

  • Sample

    240202-b5ad7sdcem

  • MD5

    88385d7c98280b9a188a499c47058b5a

  • SHA1

    48ae0de2a9fe51a577086b186f55e72bb3aab37f

  • SHA256

    75af70e23da2b599da4494660650ed0cf042caacd80749f3015b4cb323b57b8f

  • SHA512

    4c1d6ad4d759d58e9ad91221f9601371087ff85e2e350ab548bc4079c9177af0db8c59217a235c018fe189e109d8d1997bd1911a02d4fb2916d863a845509135

  • SSDEEP

    3072:oU7qYQvd5duY0433TM3dwIvmPytSyb14822ZUlJxeeKeu/nAyMEQfpdERkFHpfa/:o2U5Z0u43UyG822geXJEuke

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      88385d7c98280b9a188a499c47058b5a

    • Size

      167KB

    • MD5

      88385d7c98280b9a188a499c47058b5a

    • SHA1

      48ae0de2a9fe51a577086b186f55e72bb3aab37f

    • SHA256

      75af70e23da2b599da4494660650ed0cf042caacd80749f3015b4cb323b57b8f

    • SHA512

      4c1d6ad4d759d58e9ad91221f9601371087ff85e2e350ab548bc4079c9177af0db8c59217a235c018fe189e109d8d1997bd1911a02d4fb2916d863a845509135

    • SSDEEP

      3072:oU7qYQvd5duY0433TM3dwIvmPytSyb14822ZUlJxeeKeu/nAyMEQfpdERkFHpfa/:o2U5Z0u43UyG822geXJEuke

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks