Overview

overview

10

Static

static

8

Copy-65629...1.xlsm

windows7_x64

10

Copy-65629...1.xlsm

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Copy-656299259-05102021.zip

  • Size

    95KB

  • Sample

    210510-k72zl3m38a

  • MD5

    a90de83171b6dad23269edf7747bf6fe

  • SHA1

    0ce8ddadff32ba247b00ccd5b65d6c5c288774e1

  • SHA256

    ca84ce5415e1eea3c8e7bb294fc49b9955bb6c3a94142967a564bdac7cb8ace8

  • SHA512

    eb6b16f42d2ec3e3426a22dfd66424ab5f0c674232aa3de5d08932e8be4ec6de704cbc69a1978e26991165078779ec0b39a81111542ff574f7b7e9a93748f699

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://185.14.31.59/44313,6048108796.dat
xlm40.dropper

http://45.138.157.63/44313,6048108796.dat
xlm40.dropper

http://167.114.48.59/44313,6048108796.dat

Targets

    • Target

      Copy-656299259-05102021.xlsm

    • Size

      114KB

    • MD5

      180b3584100b595c60cfea6bf810165d

    • SHA1

      c893ddcf42ac9e6656ef77dc2d9d915df327021b

    • SHA256

      d1129d3faa620d0177ef290552e842f39fdcd52c9548ffed50d1662429657f94

    • SHA512

      932639cd7012835952041f7efc4c5dffcee03ab612e6669c286133bed3b380ba8fd2b566cc013b205d2e6e856a490d91d3b05691db4f0d0c1bae037cc04f2ff6

    Score
    10/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks