General
-
Target
b8405618cd929706b9eab8e80f198478051f761a6ec337f6eab2427c0fb91a86
-
Size
83KB
-
Sample
240830-12ay1aycqb
-
MD5
f20b511ed4c2acda6ee75ac539736bf2
-
SHA1
1545fb698194378574e83b6fcbd55cf68bbdfd97
-
SHA256
b8405618cd929706b9eab8e80f198478051f761a6ec337f6eab2427c0fb91a86
-
SHA512
2aeb46ff51279b7d21be2e580900a03409dd6c2b5f29ce9905b347b085885c1faf311d73fc97a8a2dcb302cf39323a3cf77be4111d0826c0b7dfee0b2a014415
-
SSDEEP
1536:R5Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgv91vrVmxJiME2GhdD52lZPFu1AOg/+tW:3Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgM
Behavioral task
behavioral1
Sample
b8405618cd929706b9eab8e80f198478051f761a6ec337f6eab2427c0fb91a86.xls
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
b8405618cd929706b9eab8e80f198478051f761a6ec337f6eab2427c0fb91a86.xls
Resource
win10v2004-20240802-en
Malware Config
Extracted
https://cabalasgov.com.br/OC3zbnSCG/j.html
https://guatec.com.br/NwnJ4ODx/j.html
https://site.advancertv.com/VbUzCCQo/j.html
Targets
-
-
Target
b8405618cd929706b9eab8e80f198478051f761a6ec337f6eab2427c0fb91a86
-
Size
83KB
-
MD5
f20b511ed4c2acda6ee75ac539736bf2
-
SHA1
1545fb698194378574e83b6fcbd55cf68bbdfd97
-
SHA256
b8405618cd929706b9eab8e80f198478051f761a6ec337f6eab2427c0fb91a86
-
SHA512
2aeb46ff51279b7d21be2e580900a03409dd6c2b5f29ce9905b347b085885c1faf311d73fc97a8a2dcb302cf39323a3cf77be4111d0826c0b7dfee0b2a014415
-
SSDEEP
1536:R5Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgv91vrVmxJiME2GhdD52lZPFu1AOg/+tW:3Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgM
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-