Overview

overview

10

Static

static

8

5147213624...1.xlsm

windows7_x64

10

5147213624...1.xlsm

windows10_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    51472136246-05122021.xlsm

  • Size

    202KB

  • Sample

    210512-b9bhg6282e

  • MD5

    a1d5ec8825c15b0109fe1cc129102340

  • SHA1

    fcf78f4d8ba71d7899c4bce11069a36a0c9efe59

  • SHA256

    5eb35d34cec963dffbe9a00781297f8ead356def5dd9955dc7d93211a36e0645

  • SHA512

    76f6445f4057262798627ed11a77714ffaf8d8c352b5896b0e1651beb294229d5fadb7aa2ecd948adc18a97f3be2e2d8dde4d8858193101e22d5fe01c258c2aa

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://188.127.231.165/44328.7303303241.dat
xlm40.dropper

http://45.9.188.108/44328.7303303241.dat
xlm40.dropper

http://188.127.231.225/44328.7303303241.dat

Targets

    • Target

      51472136246-05122021.xlsm

    • Size

      202KB

    • MD5

      a1d5ec8825c15b0109fe1cc129102340

    • SHA1

      fcf78f4d8ba71d7899c4bce11069a36a0c9efe59

    • SHA256

      5eb35d34cec963dffbe9a00781297f8ead356def5dd9955dc7d93211a36e0645

    • SHA512

      76f6445f4057262798627ed11a77714ffaf8d8c352b5896b0e1651beb294229d5fadb7aa2ecd948adc18a97f3be2e2d8dde4d8858193101e22d5fe01c258c2aa

    Score
    10/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks