Overview

overview

10

Static

static

8

520b670d_b...s.xlsm

windows7_x64

10

520b670d_b...s.xlsm

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    520b670d_by_Libranalysis

  • Size

    110KB

  • Sample

    210510-5ac3vyb6f2

  • MD5

    520b670d563e4cf6c12d26ff0abbc800

  • SHA1

    825717df48dae97894249177140604716e2ee96c

  • SHA256

    94fc3bf8eadb40d43f830354c3a03e5b959becb39c8c0dbe53f38781cfed232d

  • SHA512

    e4eb9a54ec0bba4d989e637e3eec27617d428d9df6c0afa4c17625ed784a209b5e3422ba61d2201067152b625db8f9a8c5c2b905bead09a2ad31d00e9e4ec5ee

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://195.123.235.1/44313,6048108796.dat
xlm40.dropper

http://45.67.230.159/44313,6048108796.dat
xlm40.dropper

http://51.195.38.32/44313,6048108796.dat

Targets

    • Target

      520b670d_by_Libranalysis

    • Size

      110KB

    • MD5

      520b670d563e4cf6c12d26ff0abbc800

    • SHA1

      825717df48dae97894249177140604716e2ee96c

    • SHA256

      94fc3bf8eadb40d43f830354c3a03e5b959becb39c8c0dbe53f38781cfed232d

    • SHA512

      e4eb9a54ec0bba4d989e637e3eec27617d428d9df6c0afa4c17625ed784a209b5e3422ba61d2201067152b625db8f9a8c5c2b905bead09a2ad31d00e9e4ec5ee

    Score
    10/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks