Overview

overview

10

Static

static

8

1906864299...1.xlsm

windows7_x64

10

1906864299...1.xlsm

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1906864299-05062021.xlsm_AD52BBB92D99674C7940A7AA4E1D4E71.zip

  • Size

    91KB

  • Sample

    210506-l5hm4kyv2x

  • MD5

    3ac831b4a5d480d6cc4834bd7051086e

  • SHA1

    2578f5c4344f1354e08762311e3376db25ccd400

  • SHA256

    18ca145386b7d8df710c92536d5e7b3255e76d5b751cf9aa3871313d92631b29

  • SHA512

    9a99d0405de00f2e2b6a9df9eb1e6736cb59c0dbf432db591fcf21c20a1a68388d284641607c5d4a4459abd93816d5d12ff37e5cfdb317652b46b42d7a66b146

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://185.45.193.74/44313,6048108796.dat
xlm40.dropper

http://195.123.220.175/44313,6048108796.dat
xlm40.dropper

http://45.144.29.253/44313,6048108796.dat

Targets

    • Target

      1906864299-05062021.xlsm

    • Size

      110KB

    • MD5

      ad52bbb92d99674c7940a7aa4e1d4e71

    • SHA1

      80d0b98f5a90d4603487c397be9380c66820919d

    • SHA256

      8914706a577666d14fa01788c4373536cc73abecb5ba13cfaa6d074fe7736389

    • SHA512

      ae4ddb8a7972b0166c7f754237f3a3a0f3ca80b253fac5798984282e0b67ba23d6ca16496fba458671d9de65036241f12df2ae549155b33360329dad7172ba33

    Score
    10/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks