General

  • Target

    subscription_1614969542.xls

  • Size

    88KB

  • Sample

    210305-2x7klzwafs

  • MD5

    f8aa9ca667a5bc9295eda651fd7f31a2

  • SHA1

    a6b461271da81a6bf15de77b7e737f44d1b68bf8

  • SHA256

    29b03ea658b30cd766dfa2e0946fce23682efbfba999033de749a39b9f2d7873

  • SHA512

    035e3702d73ed168c6b210c1b33122aec9af34a9fad42a8b4e2343203474a20bfa86c30fec74a7e22453cfd458945ac06eb5e78503ccf5ae0647166f67e3e3c1

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://a1gz2w1ul8ec2ip1.xyz/index.php

Targets

    • Target

      subscription_1614969542.xls

    • Size

      88KB

    • MD5

      f8aa9ca667a5bc9295eda651fd7f31a2

    • SHA1

      a6b461271da81a6bf15de77b7e737f44d1b68bf8

    • SHA256

      29b03ea658b30cd766dfa2e0946fce23682efbfba999033de749a39b9f2d7873

    • SHA512

      035e3702d73ed168c6b210c1b33122aec9af34a9fad42a8b4e2343203474a20bfa86c30fec74a7e22453cfd458945ac06eb5e78503ccf5ae0647166f67e3e3c1

    Score
    10/10

MITRE ATT&CK Matrix ATT&CK v6

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Tasks