Overview

overview

6

Static

static

6

Maryamcl.pdf

windows7-x64

1

Maryamcl.pdf

windows10-2004-x64

1

attachment.xml

windows7-x64

1

attachment.xml

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22-04-2024 20:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    attachment.xml

  • Size

    6KB

  • MD5

    bccd3570b4e2f92c042991f3fc01fc4a

  • SHA1

    9e4ac5ff0b67471b2d13a09b6f5b33d81590db1d

  • SHA256

    ae342854fb6ec3ffbb003104aee66fa99c5dbbf534c71ecf535d138e1b5a3ea3

  • SHA512

    8a0f3b0eb8a5a816b7fba302dd6cb182a8290fcd4f1a621fe414515f1e95c377542755d0c0ccdf94d06737468c732c981ea65f2ea46d6c04b3025dfe6e090b10

  • SSDEEP

    96:gLs5g3nVaSwJ6B6KzWRKU2KgMvH0pq5kJYcnpuz6S6zEJh:us5glOJ6B6OWt6pq5alGkW

Score
1/10

Malware Config

Signatures

Processes

  • C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
    "C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\attachment.xml"
    1⤵
      PID:640

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/640-0-0x00007FFD6BBF0000-0x00007FFD6BC00000-memory.dmp

      Filesize

      64KB

      Download

    • memory/640-1-0x00007FFDABB70000-0x00007FFDABD65000-memory.dmp

      Filesize

      2.0MB

      Download

    • memory/640-2-0x00007FFD6BBF0000-0x00007FFD6BC00000-memory.dmp

      Filesize

      64KB

      Download

    • memory/640-3-0x00007FFDA9320000-0x00007FFDA95E9000-memory.dmp

      Filesize

      2.8MB

      Download

    • memory/640-4-0x00007FFDABB70000-0x00007FFDABD65000-memory.dmp

      Filesize

      2.0MB

      Download