bba463e9f1b1044f7d3b09fe0d696ebb57b1668a1fc025363731c6aefac112bd | Triage

Sharing

General

Target

Copy-384955799-05102021.xlsm
Size

114KB
Sample

210512-msqsbs8ldx
MD5

3a3aae5975bd4a5512cfea2a4a5991a6
SHA1

4ff9eafa51cdd8d979ef68dc8d0aa9ebb6168e20
SHA256

bba463e9f1b1044f7d3b09fe0d696ebb57b1668a1fc025363731c6aefac112bd
SHA512

4520dd5fc814372d5a76ef77376293fb5b562f2543a315ac567b1f24fcdb7da89b63da29004c2f0199e249f9319bf88945c1fd51bf40cfd3c0ef09dcf40b0d1f

Score

10^/10

macro xlm

Malware Config

Extracted

Language

xlm4.0

Source

URLs

xlm40.dropper

http://185.14.31.59/44313,6048108796.dat

xlm40.dropper

http://45.138.157.63/44313,6048108796.dat

xlm40.dropper

http://167.114.48.59/44313,6048108796.dat

Targets

- Target
  
  Copy-384955799-05102021.xlsm
- Size
  
  114KB
- MD5
  
  3a3aae5975bd4a5512cfea2a4a5991a6
- SHA1
  
  4ff9eafa51cdd8d979ef68dc8d0aa9ebb6168e20
- SHA256
  
  bba463e9f1b1044f7d3b09fe0d696ebb57b1668a1fc025363731c6aefac112bd
- SHA512
  
  4520dd5fc814372d5a76ef77376293fb5b562f2543a315ac567b1f24fcdb7da89b63da29004c2f0199e249f9319bf88945c1fd51bf40cfd3c0ef09dcf40b0d1f
Score

10^/10
behavioral1 behavioral2

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2