Overview

overview

10

Static

static

1

SOA-INV089...la.xls

windows7-x64

3

SOA-INV089...la.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SOA-INV0892024.xla.xlsx

  • Size

    848KB

  • Sample

    241017-rk7rza1amg

  • MD5

    0f798332bacadf55df2c01773c87a4be

  • SHA1

    f989a3c3ff21a210abac538ad61489b2db402462

  • SHA256

    ca1308388e528ba11463e55408cc367131b43475e02212564f973cadbbac71bd

  • SHA512

    9d04cdf41951cc2a5d0eb08562ea72b001942d5fde9c1ec39384b7b50f1c6528129b79ed409769fb17829218ca50f3cd58f80ccebc3122b0818e1b53d4a8b406

  • SSDEEP

    12288:QmzHJE+CzldcD3DERnLRmF8DNJhuiO3LGxHxJR019OJE89kOaD6Vbl:bczlCbARM8BTO3SPEmE8eOW6Vb

Score
10/10
discovery

Malware Config

Targets

    • Target

      SOA-INV0892024.xla.xlsx

    • Size

      848KB

    • MD5

      0f798332bacadf55df2c01773c87a4be

    • SHA1

      f989a3c3ff21a210abac538ad61489b2db402462

    • SHA256

      ca1308388e528ba11463e55408cc367131b43475e02212564f973cadbbac71bd

    • SHA512

      9d04cdf41951cc2a5d0eb08562ea72b001942d5fde9c1ec39384b7b50f1c6528129b79ed409769fb17829218ca50f3cd58f80ccebc3122b0818e1b53d4a8b406

    • SSDEEP

      12288:QmzHJE+CzldcD3DERnLRmF8DNJhuiO3LGxHxJR019OJE89kOaD6Vbl:bczlCbARM8BTO3SPEmE8eOW6Vb

    Score
    10/10
    discovery

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks