Overview

overview

10

Static

static

10

ManagerOff...in.zip

windows7-x64

ManagerOff...in.zip

windows10-2004-x64

1

ManagerOff...ool.py

windows7-x64

3

ManagerOff...ool.py

windows10-2004-x64

3

ManagerOff...ll.ps1

windows7-x64

3

ManagerOff...ll.ps1

windows10-2004-x64

8

ManagerOff...L/.txt

windows7-x64

1

ManagerOff...L/.txt

windows10-2004-x64

1

ManagerOff...13.xml

windows7-x64

3

ManagerOff...13.xml

windows10-2004-x64

8

ManagerOff...16.xml

windows7-x64

3

ManagerOff...16.xml

windows10-2004-x64

1

ManagerOff...19.xml

windows7-x64

3

ManagerOff...19.xml

windows10-2004-x64

1

ManagerOff...21.xml

windows7-x64

3

ManagerOff...21.xml

windows10-2004-x64

1

ManagerOff...ICENSE

windows7-x64

1

ManagerOff...ICENSE

windows10-2004-x64

1

ManagerOff...DME.md

windows7-x64

3

ManagerOff...DME.md

windows10-2004-x64

3

ManagerOff...ce.bat

windows7-x64

3

ManagerOff...ce.bat

windows10-2004-x64

8

ManagerOff...tup.py

windows7-x64

3

ManagerOff...tup.py

windows10-2004-x64

3

Analysis

  • max time kernel
    430s
  • max time network
    1152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    16/12/2024, 11:57

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ManagerOfficeTool-main/Files/ODT_ConfigXML/OfficeConfig2016.xml

  • Size

    685B

  • MD5

    ac4c839aef48e05687fc0496c2b9ec02

  • SHA1

    0fb2fcb834ff55830b82b06a2419ab5de228c02a

  • SHA256

    cc40c09edc0b23aec206c0ad348ba137300b6038bd2f95b834d74fc0844b1bcc

  • SHA512

    05591138d52c110f650034b5b4052097cac6924676c0553fb64642f9b5756bb257908dcca7a15340d768f0a544451e96d47e718a49e1d778487c92e37d1257b7

Score
1/10

Malware Config

Signatures

Processes

  • C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE
    "C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\MSOXMLED.EXE" /verb open "C:\Users\Admin\AppData\Local\Temp\ManagerOfficeTool-main\Files\ODT_ConfigXML\OfficeConfig2016.xml"
    1⤵
      PID:4560

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • memory/4560-1-0x00007FFE76B6D000-0x00007FFE76B6E000-memory.dmp

            Filesize

            4KB

            Download

          • memory/4560-0-0x00007FFE36B50000-0x00007FFE36B60000-memory.dmp

            Filesize

            64KB

            Download

          • memory/4560-2-0x00007FFE76AD0000-0x00007FFE76CC5000-memory.dmp

            Filesize

            2.0MB

            Download

          • memory/4560-3-0x00007FFE76AD0000-0x00007FFE76CC5000-memory.dmp

            Filesize

            2.0MB

            Download

          • memory/4560-4-0x00007FFE76AD0000-0x00007FFE76CC5000-memory.dmp

            Filesize

            2.0MB

            Download