Overview

overview

10

Static

static

8

1579726472...1.xlsm

windows7_x64

10

1579726472...1.xlsm

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1579726472-05062021.zip

  • Size

    91KB

  • Sample

    210506-2t4wnftcjn

  • MD5

    831aac06490cbf1390e621bfe977fd9f

  • SHA1

    142e5c640420a563692409ace3f4eca70e5bb677

  • SHA256

    9966ea9fe28fa0fa0195765723dc35c2f5cae39e3aa74bac953b7ffc04f4d484

  • SHA512

    0249fb34435c60041851ba2e24bb1425fc72965229a5e6b115015dbf3d98e35fb62438104ad87d21494581d4ba5e3c3fb31cdee4d7e7752b1330285d35c77b56

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://185.45.193.74/44313,6048108796.dat
xlm40.dropper

http://195.123.220.175/44313,6048108796.dat
xlm40.dropper

http://45.144.29.253/44313,6048108796.dat

Targets

    • Target

      1579726472-05062021.xlsm

    • Size

      110KB

    • MD5

      91969e604a88cc4c056d8228611ab07c

    • SHA1

      06017c1fe027be38121657fb69c1bbe660a7e7f3

    • SHA256

      0057eaa5a94b68b99f2d2b55ba9fb53e4a23b5565a3d1155e795235b6a7f19f5

    • SHA512

      0a4a0b81917339a7da832056f4b673d468de038396fca88128d2883595273fd91dcff87d5a5d5df46267c77675bc3e368bf9bc238d72c0c7c976d0725e7fe97a

    Score
    10/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks