Overview

overview

8

Static

static

1

Tech.group...ed.xls

windows7-x64

8

Tech.group...ed.xls

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Tech.group AG PO attached.xls

  • Size

    420KB

  • Sample

    240514-naxmgadb4x

  • MD5

    a07706b0b327ff9f0cb761ca40060b36

  • SHA1

    cf0f0055a5b5533eab039cf7ff3b57940c780f36

  • SHA256

    6e963b4725ef3b496e360de8a39bd2ca7231a7de9f31a8d52eb11822efc9c14c

  • SHA512

    4e7dcf0a4138972ad8f2e68080b3df1597f8f5c416c29ed407dd45be2c684f14c6637215e8a4b35b4aad5bb10f0ceda02ffce99407cd8c87858eea6d269cc405

  • SSDEEP

    6144:FZ+RwPONXoRjDhIcp0fDlavx+W26nARLbuniSHBMixiMK6G+ZFrTUvCp4sJglC1j:Y2iQpozwjTqCfglC1IUNsP1qqiSqTn2

Score
8/10

Malware Config

Targets

    • Target

      Tech.group AG PO attached.xls

    • Size

      420KB

    • MD5

      a07706b0b327ff9f0cb761ca40060b36

    • SHA1

      cf0f0055a5b5533eab039cf7ff3b57940c780f36

    • SHA256

      6e963b4725ef3b496e360de8a39bd2ca7231a7de9f31a8d52eb11822efc9c14c

    • SHA512

      4e7dcf0a4138972ad8f2e68080b3df1597f8f5c416c29ed407dd45be2c684f14c6637215e8a4b35b4aad5bb10f0ceda02ffce99407cd8c87858eea6d269cc405

    • SSDEEP

      6144:FZ+RwPONXoRjDhIcp0fDlavx+W26nARLbuniSHBMixiMK6G+ZFrTUvCp4sJglC1j:Y2iQpozwjTqCfglC1IUNsP1qqiSqTn2

    Score
    8/10

    • Blocklisted process makes network request

    • Abuses OpenXML format to download file from external location

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks