Overview

overview

7

Static

static

3

@!File_202...�#.rar

windows7-x64

3

@!File_202...�#.rar

windows10-2004-x64

7

resources.pak

windows7-x64

3

resources.pak

windows10-2004-x64

3

x64/Templa...la.xml

windows7-x64

1

x64/Templa...la.xml

windows10-2004-x64

1

x64/Templa...EC.xml

windows7-x64

1

x64/Templa...EC.xml

windows10-2004-x64

1

x64/Templa...te.xml

windows7-x64

1

x64/Templa...te.xml

windows10-2004-x64

1

x64/Templa...os.rpt

windows7-x64

3

x64/Templa...os.rpt

windows10-2004-x64

3

x64/Templa...nt.xml

windows7-x64

x64/Templa...nt.xml

windows10-2004-x64

1

x64/Templa...s_.xml

windows7-x64

1

x64/Templa...s_.xml

windows10-2004-x64

1

x64/Templa...ro.xml

windows7-x64

1

x64/Templa...ro.xml

windows10-2004-x64

1

x64/Templa...ia.xml

windows7-x64

1

x64/Templa...ia.xml

windows10-2004-x64

1

x64/Templa...te.htm

windows7-x64

1

x64/Templa...te.htm

windows10-2004-x64

1

x64/plugin...ns.dll

windows7-x64

1

x64/plugin...ns.dll

windows10-2004-x64

1

x64/plugin...ns.dll

windows7-x64

1

x64/plugin...ns.dll

windows10-2004-x64

1

x64/plugin...ns.dll

windows7-x64

1

x64/plugin...ns.dll

windows10-2004-x64

1

x64/plugin...ns.dll

windows7-x64

1

x64/plugin...ns.dll

windows10-2004-x64

1

x64/plugin...re.dll

windows7-x64

1

x64/plugin...re.dll

windows10-2004-x64

1

Analysis

  • max time kernel
    144s
  • max time network
    157s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240221-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240221-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/02/2024, 12:19

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    x64/Templates/DetalleLibro.xml

  • Size

    884B

  • MD5

    878f702458d87ef7eedcd43fa36a113c

  • SHA1

    058fa653f5330874470f780012119cfb5075494f

  • SHA256

    6c3a1ab73d28fbf01dd133c9308cd9a748a9eeaa4781efa95f76846838b7acc0

  • SHA512

    fad388102d9e75e62c2362ba831c834009bef7c06288285ce467bd949fee47b5a7c7c0414f0362f56241a03ed1e2797b3958ceb2cce97c32f258141b7a9ca65d

Score
1/10

Malware Config

Signatures

Processes

  • C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
    "C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\x64\Templates\DetalleLibro.xml"
    1⤵
      PID:2320

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2320-0-0x00007FF8268B0000-0x00007FF8268C0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2320-1-0x00007FF866830000-0x00007FF866A25000-memory.dmp

      Filesize

      2.0MB

      Download

    • memory/2320-2-0x00007FF866830000-0x00007FF866A25000-memory.dmp

      Filesize

      2.0MB

      Download

    • memory/2320-3-0x00007FF8643A0000-0x00007FF864669000-memory.dmp

      Filesize

      2.8MB

      Download

    • memory/2320-4-0x00007FF8268B0000-0x00007FF8268C0000-memory.dmp

      Filesize

      64KB

      Download

    • memory/2320-5-0x00007FF866830000-0x00007FF866A25000-memory.dmp

      Filesize

      2.0MB

      Download