Overview

overview

10

Static

static

8

3157179803...1.xlsm

windows7_x64

10

3157179803...1.xlsm

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31571798030-05102021.zip

  • Size

    92KB

  • Sample

    210510-cbss4y41v2

  • MD5

    c2a8ec5f4d8b201b0ba48f7ae75c525b

  • SHA1

    05505be52e8f082c220ee2915333ce80b0a6018d

  • SHA256

    c42dd5f4c88fd3b47faf0dde2d73d8ca5bcc91bba6f481e8c17b8103e2b1d68d

  • SHA512

    df0cd2cf25c072a62ead783b1662087d904dd9bf63ce67352f9b8fb26f4106b2f837e8389dc312ed6510715e60e681de659619d7a253aee750ac58e344dda8bd

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://195.123.235.1/44313,6048108796.dat
xlm40.dropper

http://45.67.230.159/44313,6048108796.dat
xlm40.dropper

http://51.195.38.32/44313,6048108796.dat

Targets

    • Target

      31571798030-05102021.xlsm

    • Size

      110KB

    • MD5

      b003501c809265f5c77ecd617496b53d

    • SHA1

      d183f945e6858d7b44a940ab36b532326dbb39be

    • SHA256

      985c3c8d413e49b3ad1f51ac2d140f54393e909bc4d571f1fcbc6364fb6df0a7

    • SHA512

      c2c9d644e2111eedc7d7448d32a3afd6a59f29a5a60d2b96b5fd67503cb5dcbffea12cf04005e53a27de0b72a70f1769c8451518fe7cf1ce10a8be8779dbabd8

    Score
    10/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks