Overview

overview

10

Static

static

8

BANK RECEIPT.exe

windows7_x64

10

BANK RECEIPT.exe

windows10_x64

10

BOL.xlsm

windows7_x64

10

BOL.xlsm

windows10_x64

10

Inv_399139_86191.xlsm

windows7_x64

10

Inv_399139_86191.xlsm

windows10_x64

10

Ordine 400...xs.exe

windows7_x64

10

Ordine 400...xs.exe

windows10_x64

10

PO.exe

windows7_x64

10

PO.exe

windows10_x64

10

STATEMENT ...NT.exe

windows7_x64

10

STATEMENT ...NT.exe

windows10_x64

10

SWIFT-MT10...df.exe

windows7_x64

10

SWIFT-MT10...df.exe

windows10_x64

10

inquiries ...B .exe

windows7_x64

10

inquiries ...B .exe

windows10_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9c696cb9_by_Libranalysis

  • Size

    2.4MB

  • MD5

    9c696cb9c1c105267728511ff6b56279

  • SHA1

    3e97c42c9a074393971f138eeda73c4d6848b3e4

  • SHA256

    63abc500d2a9f12692276d1cd2becc0ce16719ab69a69ea9827bd411f12b4291

  • SHA512

    0b73a172673b9b6db8e2b220661f48be803d7f805adc1511c0050c6f034f21e45603f52f63d461d2ca687380ae9c7ceb2d2c524dd662aea93d57e16fc96d3606

Score
8/10
macro

Malware Config

Signatures

  • Suspicious Office macro 2 IoCs

    Office document equipped with macros.

    macro
  • NSIS installer 6 IoCs
    installer

Files

  • 9c696cb9_by_Libranalysis
    .rar
  • BANK RECEIPT.exe
    .exe windows x86


  • BOL.xlsm
    .xlsm office2007

    ThisWorkbook

    Sheet1

  • Inv_399139_86191.xlsm
    .xlsm office2007

    ThisWorkbook

    Sheet1

  • Ordine 400225.xlxs.img
    .iso
  • Ordine 400225.xlxs.exe
    .exe windows x86


  • PO.exe
    .exe windows x86


  • STATEMENT OF ACCOUNT.exe
    .exe windows x86


  • SWIFT-MT103_10262020.pdf.exe
    .exe windows x86


  • inquiries for WCB .exe
    .exe windows x86