Overview

overview

10

Static

static

8

3863969412...1.xlsm

windows7_x64

10

3863969412...1.xlsm

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3863969412-05102021.xlsm

  • Size

    110KB

  • Sample

    210510-cw9f1dkjq6

  • MD5

    8b242e226ff0378ff50ecdb6db2e2f47

  • SHA1

    f1a288193f510964602d634e86f186651c2a55c6

  • SHA256

    02d173c5df66313e059863e96378097c8e1b9b16a8e3fd0eba2860b7c74ff8a0

  • SHA512

    5abc32733b690045ffa5980ff5113277c0c63fc189629539fe3dbc9dd61b4af2f807fae6099b82e8ed4c295737fb4eb37d8d03c89979214eb4edbf70f59792bb

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://195.123.235.1/44313,6048108796.dat
xlm40.dropper

http://45.67.230.159/44313,6048108796.dat
xlm40.dropper

http://51.195.38.32/44313,6048108796.dat

Targets

    • Target

      3863969412-05102021.xlsm

    • Size

      110KB

    • MD5

      8b242e226ff0378ff50ecdb6db2e2f47

    • SHA1

      f1a288193f510964602d634e86f186651c2a55c6

    • SHA256

      02d173c5df66313e059863e96378097c8e1b9b16a8e3fd0eba2860b7c74ff8a0

    • SHA512

      5abc32733b690045ffa5980ff5113277c0c63fc189629539fe3dbc9dd61b4af2f807fae6099b82e8ed4c295737fb4eb37d8d03c89979214eb4edbf70f59792bb

    Score
    10/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks