Overview

overview

7

Static

static

1

Microsoft....we.zip

windows10-2004-x64

1

AppxBlockMap.xml

windows10-2004-x64

1

AppxMetada...st.xml

windows10-2004-x64

1

AppxSignature.p7x

windows10-2004-x64

3

Microsoft....4.appx

windows10-2004-x64

Microsoft....4.appx

windows10-2004-x64

1

Microsoft....6.appx

windows10-2004-x64

7

[Content_Types].xml

windows10-2004-x64

1

Analysis

  • max time kernel
    90s
  • max time network
    168s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231222-es
  • resource tags

    arch:x64arch:x86image:win10v2004-20231222-eslocale:es-esos:windows10-2004-x64systemwindows
  • submitted
    10-02-2024 04:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    AppxMetadata/AppxBundleManifest.xml

  • Size

    7KB

  • MD5

    7a206184dde4e1c26f85397605d77d51

  • SHA1

    69ba4cccdf2fcda97e44ea05a51c945249fec7ab

  • SHA256

    3bea2195b3e46e859288426fb84a7a0d3a00a15b53b38728b4eca3b51dda0429

  • SHA512

    be4c84f24e8fbac2d4d7a6fd1fb1f0b2c1d5671d24035b70c3ce06e1a63c860d0d0a8ee52ad43b33ea2697488ac7cb67c72211fa8c30b99b8bb3a69e96c17b96

  • SSDEEP

    192:WwF7yLvg21SeJR/ADx9bqxH8FHZeTb6b9rxZb5K4ETQVPvT7nRwfX7XZZ/CuD0dz:hF7yLvg21SeJR/ADx9bqxH8FHZeTb6bD

Score
1/10

Malware Config

Signatures

Processes

  • C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
    "C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\AppxMetadata\AppxBundleManifest.xml"
    1⤵
      PID:1556

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1556-0-0x00007FF8CF790000-0x00007FF8CF7A0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/1556-1-0x00007FF90F710000-0x00007FF90F905000-memory.dmp

      Filesize

      2.0MB

      Download

    • memory/1556-2-0x00007FF90D1C0000-0x00007FF90D489000-memory.dmp

      Filesize

      2.8MB

      Download

    • memory/1556-3-0x00007FF8CF790000-0x00007FF8CF7A0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/1556-4-0x00007FF90F710000-0x00007FF90F905000-memory.dmp

      Filesize

      2.0MB

      Download