Overview

overview

10

Static

static

8

Copy-81284...1.xlsm

windows7_x64

10

Copy-81284...1.xlsm

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Copy-812843793-05102021.xlsm

  • Size

    114KB

  • Sample

    210510-ejxqe8bdb6

  • MD5

    183120c1413a287c1b379192be2d9143

  • SHA1

    0829d9d2e0272fa1a5fa2bbd79fee6a7009b3732

  • SHA256

    c58cb92b9d48d0b4034164d533bbe0edd54be0cd7eab5fa4a5c59fded9e1e4d3

  • SHA512

    65f9d9eb93acf0eba4f60d0740a9c4fbf82c7b9c513c0c85097d0d3e8c639e3ab564511bd6940f12b0e2dd36d6088ca9f975316c856090f11453a4e8e99d7531

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://185.14.31.59/44313,6048108796.dat
xlm40.dropper

http://45.138.157.63/44313,6048108796.dat
xlm40.dropper

http://167.114.48.59/44313,6048108796.dat

Targets

    • Target

      Copy-812843793-05102021.xlsm

    • Size

      114KB

    • MD5

      183120c1413a287c1b379192be2d9143

    • SHA1

      0829d9d2e0272fa1a5fa2bbd79fee6a7009b3732

    • SHA256

      c58cb92b9d48d0b4034164d533bbe0edd54be0cd7eab5fa4a5c59fded9e1e4d3

    • SHA512

      65f9d9eb93acf0eba4f60d0740a9c4fbf82c7b9c513c0c85097d0d3e8c639e3ab564511bd6940f12b0e2dd36d6088ca9f975316c856090f11453a4e8e99d7531

    Score
    10/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks