af74d416b65217d0b15163e7b3fd5d0702d65f88b260c269c128739e7e7a4c4d | Triage

Sharing

General

Target

af74d416b65217d0b15163e7b3fd5d0702d65f88b260c269c128739e7e7a4c4d.xll
Size

660KB
Sample

240920-b1yk8sscjh
MD5

ea64d820b7ee387d0e811bca0104d9e4
SHA1

6f48f58d80ae41f6b979402696c70db74afc3135
SHA256

af74d416b65217d0b15163e7b3fd5d0702d65f88b260c269c128739e7e7a4c4d
SHA512

b096717383ec11253d918efcdbe729752869b5e6502875affb1ceb98b8c7097c69103cb57993b42068c38c58781f5476453e5753b9f6e05403d41bc6b3bdf780
SSDEEP

6144:yxOJXk57IMp7oyR4y6Qf3lbp83A6zbKsS5ukTP2YmqtbSGUmuqZGw+gSe81H9zq2:yx2s7IMrR4yVld8bzbBSreDqZGDxlq

Score

10^/10

discovery

Malware Config

Extracted

Language

xlm4.0

Source

Targets

- Target
  
  af74d416b65217d0b15163e7b3fd5d0702d65f88b260c269c128739e7e7a4c4d.xll
- Size
  
  660KB
- MD5
  
  ea64d820b7ee387d0e811bca0104d9e4
- SHA1
  
  6f48f58d80ae41f6b979402696c70db74afc3135
- SHA256
  
  af74d416b65217d0b15163e7b3fd5d0702d65f88b260c269c128739e7e7a4c4d
- SHA512
  
  b096717383ec11253d918efcdbe729752869b5e6502875affb1ceb98b8c7097c69103cb57993b42068c38c58781f5476453e5753b9f6e05403d41bc6b3bdf780
- SSDEEP
  
  6144:yxOJXk57IMp7oyR4y6Qf3lbp83A6zbKsS5ukTP2YmqtbSGUmuqZGw+gSe81H9zq2:yx2s7IMrR4yVld8bzbBSreDqZGDxlq
Score

10^/10

discovery
- Drops startup file
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2