Overview

overview

10

Static

static

8

Marine Tiger.xlsm

windows7_x64

10

Marine Tiger.xlsm

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Marine Tiger.xlsm

  • Size

    13KB

  • Sample

    210208-8fm1xj24f2

  • MD5

    18d6c58d438aa199c43cec6503ae2a6c

  • SHA1

    f2dbad3686195f07db9bac1aa7eba45120069ded

  • SHA256

    6c92ed33934d5a604f57aac4ff33252720354285291791bed88b6f3f15b9631d

  • SHA512

    2a0c139a909810abbeea86258c7fa4960b6eb2893e8203a0f5815a080070062957a7aa7ccfc27bd3ef5129c31c03c28139b9e05d2284d52b9f89ec15752c1621

Score
10/10
macro

Malware Config

Targets

    • Target

      Marine Tiger.xlsm

    • Size

      13KB

    • MD5

      18d6c58d438aa199c43cec6503ae2a6c

    • SHA1

      f2dbad3686195f07db9bac1aa7eba45120069ded

    • SHA256

      6c92ed33934d5a604f57aac4ff33252720354285291791bed88b6f3f15b9631d

    • SHA512

      2a0c139a909810abbeea86258c7fa4960b6eb2893e8203a0f5815a080070062957a7aa7ccfc27bd3ef5129c31c03c28139b9e05d2284d52b9f89ec15752c1621

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks