Joe Sandbox Cloud Basic

Want to search on specific fields?


Try our:

Advanced Search

Want to search in depth on all Cloud Basic reports?

Try: Joe Sandbox View

Register Login
sloganpng
top title background image
flash

Refusal-1605078281-01212021.xlsm

Status: finished
Submission Time: 2021-01-22 10:13:57 +01:00
Malicious
Trojan
Exploiter
Evader
Hidden Macro 4.0

Comments

Tags

Details

  • Analysis ID:
    343099
  • API (Web) ID:
    588132
  • Analysis Started:
    2021-01-22 10:39:23 +01:00
  • Analysis Finished:
    2021-01-22 10:49:19 +01:00
  • MD5:
    6b11147a8eb468cb247d32f4be0f7469
  • SHA1:
    ff599ff7ed480bf2485e1b85aed7e8c6bbe7aeec
  • SHA256:
    2fc494967112688b5cf699386bbab79f9d23cc03527769adc932739a0be93094
  • Technologies:

Joe Sandbox

Engine Download Report Detection Info
Full Report Management Report IOC Report
malicious
Score: 60
System: Windows 7 x64 SP1 with Office 2010 SP1 (IE 11, FF52, Chrome 57, Adobe Reader DC 15, Flash 25.0.0.127, Java 8 Update 121, .NET 4.6.2)
Full Report Management Report IOC Report
malicious
Score: 80
System: Windows 10 x64 22H2 with Office Professional Plus 2019, Chrome 117, Firefox 118, Adobe Reader DC 23, Java 8 Update 381, 7zip 23.01
Run Condition: Potential for more IOCs and behavior

Third Party Analysis Engines

Open Full Report
malicious
Score: 5/83

Domains

Name IP Detection
leafybuy.com
 0.0.0.0

Dropped files

Name File Type Hashes Detection
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\Refusal-1605078281-01212021.xlsm.LNK
 MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Archive, ctime=Wed Sep 30 14:03:53 2020, mtime=Fri Jan 22 17:45:19 2021, atime=Fri Jan 22 17:45:19 2021, length=25980, window=hide
 #
C:\Users\user\Desktop\~$Refusal-1605078281-01212021.xlsm
 data
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.MSO\535148E5.png
 PNG image data, 24 x 24, 8-bit/color RGB, non-interlaced
 #
Click to see the 6 hidden entries
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.MSO\BC88F1A2.png
 PNG image data, 24 x 24, 8-bit/color RGB, non-interlaced
 #
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.MSO\E1B7774.png
 PNG image data, 205 x 58, 8-bit/color RGB, non-interlaced
 #
C:\Users\user\AppData\Local\Temp\9EC10000
 data
 #
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\Desktop.LNK
 MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Read-Only, Directory, ctime=Thu Jun 27 16:19:49 2019, mtime=Fri Jan 22 17:45:19 2021, atime=Fri Jan 22 17:45:19 2021, length=8192, window=hide
 #
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\index.dat
 ASCII text, with CRLF line terminators
 #
C:\Users\user\Desktop\7FC10000
 data
 #