cd2a5c6e19402b092aeff5e28227361c119b575b9c3cd754de4279bfafa5448c | Triage

Submit
Reports

Overview

overview

Static

static

8

082b938aa5...8.xlsm

windows7_x64

082b938aa5...8.xlsm

windows10_x64

Sharing

General

Target

5563973955125248.zip
Size

95KB
Sample

210901-bh92dbwyjn
MD5

3316d9f4ac4f1b7c8e5a042d6cf1d1d5
SHA1

34b6c9aeb8d6f883c97213d5bc4bef624b2688d2
SHA256

cd2a5c6e19402b092aeff5e28227361c119b575b9c3cd754de4279bfafa5448c
SHA512

c36cbb1e897a27f7bd411138456d590ec172b0377ea330149eba3d8cb2067a9b5d46125b9c55b54b010186131154f293c78c590dc55a8626d891fa1d5a097dbe

Score

10^/10

macro xlm

Static task

static1

Behavioral task

behavioral1

Sample

082b938aa5b5b618ba63fc343f12ddcb5b3cb2e8d409a723e609aa8157210678.xlsm

Resource

win7v20210408

windows7_x64

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

082b938aa5b5b618ba63fc343f12ddcb5b3cb2e8d409a723e609aa8157210678.xlsm

Resource

win10v20210410

windows10_x64

0 signatures

0 seconds

Malware Config

Extracted

Language

xlm4.0

Source

URLs

xlm40.dropper

http://185.183.99.115/44313,6048108796.dat

xlm40.dropper

http://51.89.73.159/44313,6048108796.dat

xlm40.dropper

http://190.14.37.38/44313,6048108796.dat

Targets

- Target
  
  082b938aa5b5b618ba63fc343f12ddcb5b3cb2e8d409a723e609aa8157210678
- Size
  
  114KB
- MD5
  
  a3ecb63ac9423b31760e962d42d0474b
- SHA1
  
  0263b48e4a0fe383ca4bb3ddc50d4c6e31ef532f
- SHA256
  
  082b938aa5b5b618ba63fc343f12ddcb5b3cb2e8d409a723e609aa8157210678
- SHA512
  
  ac5f6258af6139fd89112f8ae53a3e7aec54921ab8a14e2a91f044418a34b40fb2bf82580497330dd286575df876aafb58704ff93621df3292d619e9a83c04ff
Score

10^/10
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy