50431a2ac7d1684ee85ef7ce9752a0cf75d44cb7d6b7c54fef45c2111c324999 | Triage

Submit
Reports

Overview

overview

Static

static

1

50431a2ac7...9.xlsm

windows7-x64

50431a2ac7...9.xlsm

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

Target

50431a2ac7d1684ee85ef7ce9752a0cf75d44cb7d6b7c54fef45c2111c324999
Size

2.1MB
Sample

240312-26hebadf6y
MD5

e3328fac74c968eb426fb6228fed82c1
SHA1

8780e1f27599383de38f23cccc475eb99eedd9fb
SHA256

50431a2ac7d1684ee85ef7ce9752a0cf75d44cb7d6b7c54fef45c2111c324999
SHA512

31627a00fd15ef64276455a61b46106d6732f3ad70e0ce21617018d17dd5a3ff83fdef027062a63b30d2be46c3b90f5886265686afd3fa43b2569144e73f704b
SSDEEP

24576:6h8YKCuBoy9DW+N67J56npyknyQfxyRcm6v6zPaQTcso2bqV+PE2nfkbZUXdtUi:I8j5BoN7enwQJyPPm22Y5dtUi

Score

10^/10

Static task

static1

Behavioral task

behavioral1

Sample

50431a2ac7d1684ee85ef7ce9752a0cf75d44cb7d6b7c54fef45c2111c324999.xlsm

Resource

win7-20240221-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

50431a2ac7d1684ee85ef7ce9752a0cf75d44cb7d6b7c54fef45c2111c324999.xlsm

Resource

win10v2004-20240226-en

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  50431a2ac7d1684ee85ef7ce9752a0cf75d44cb7d6b7c54fef45c2111c324999
- Size
  
  2.1MB
- MD5
  
  e3328fac74c968eb426fb6228fed82c1
- SHA1
  
  8780e1f27599383de38f23cccc475eb99eedd9fb
- SHA256
  
  50431a2ac7d1684ee85ef7ce9752a0cf75d44cb7d6b7c54fef45c2111c324999
- SHA512
  
  31627a00fd15ef64276455a61b46106d6732f3ad70e0ce21617018d17dd5a3ff83fdef027062a63b30d2be46c3b90f5886265686afd3fa43b2569144e73f704b
- SSDEEP
  
  24576:6h8YKCuBoy9DW+N67J56npyknyQfxyRcm6v6zPaQTcso2bqV+PE2nfkbZUXdtUi:I8j5BoN7enwQJyPPm22Y5dtUi
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy