Overview

overview

10

Static

static

8

9505505199...d3.xls

windows7-x64

10

9505505199...d3.xls

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    950550519929170253bdc7b3587976e73a274833656ed4af54322fe71cd12cd3

  • Size

    47KB

  • Sample

    240823-z71k6sxcrb

  • MD5

    386fe3c94ae489027d67e46c158e4cec

  • SHA1

    b394b5d8b0ca29b7d9862d3a5daabb9e21630514

  • SHA256

    950550519929170253bdc7b3587976e73a274833656ed4af54322fe71cd12cd3

  • SHA512

    57ac2522dbc528fdb45df623aa37775494812c8563be7c2b6e883a4266fc17835f2425498288f4c7a5594c157013aeee7772bdb7e017f47295ae80c87236eae5

  • SSDEEP

    768:cn8xEtjPOtioVjDGUU1qfDlaGGx+cL+LIfdAWkpGfyuexEFHD7bGlPkEXMJxF:c8xEtjPOtioVjDGUU1qfDlaGGx+cL+La

Score
10/10
discoveryexecutionmacromacro_on_action

Malware Config

Targets

    • Target

      950550519929170253bdc7b3587976e73a274833656ed4af54322fe71cd12cd3

    • Size

      47KB

    • MD5

      386fe3c94ae489027d67e46c158e4cec

    • SHA1

      b394b5d8b0ca29b7d9862d3a5daabb9e21630514

    • SHA256

      950550519929170253bdc7b3587976e73a274833656ed4af54322fe71cd12cd3

    • SHA512

      57ac2522dbc528fdb45df623aa37775494812c8563be7c2b6e883a4266fc17835f2425498288f4c7a5594c157013aeee7772bdb7e017f47295ae80c87236eae5

    • SSDEEP

      768:cn8xEtjPOtioVjDGUU1qfDlaGGx+cL+LIfdAWkpGfyuexEFHD7bGlPkEXMJxF:c8xEtjPOtioVjDGUU1qfDlaGGx+cL+La

    Score
    10/10
    discoveryexecution

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Process spawned suspicious child process

      This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks