Overview

overview

10

Static

static

8

f456708f5e...7.xlsb

windows7_x64

10

f456708f5e...7.xlsb

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f456708f5e4520028859ed8d6dee1c0ebbbf62de407ed954d5f21dfd21f28347

  • Size

    357KB

  • Sample

    220328-21kbqagdc3

  • MD5

    030f8d5e06c4575493730e25a38e1e5c

  • SHA1

    d93296d64b634cd9dbb4ed8f6fa077652c21e1aa

  • SHA256

    f456708f5e4520028859ed8d6dee1c0ebbbf62de407ed954d5f21dfd21f28347

  • SHA512

    deb4828dbaec50baf817ef5f9d97bdffa874b32d2def843138cbe1442c682f732f8c2cd16940d0d6f701272de575b383e435d1db15ec0be9128a6735c3cdcc9e

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://1.93kish.ir/ds/161120.gif

Targets

    • Target

      f456708f5e4520028859ed8d6dee1c0ebbbf62de407ed954d5f21dfd21f28347

    • Size

      357KB

    • MD5

      030f8d5e06c4575493730e25a38e1e5c

    • SHA1

      d93296d64b634cd9dbb4ed8f6fa077652c21e1aa

    • SHA256

      f456708f5e4520028859ed8d6dee1c0ebbbf62de407ed954d5f21dfd21f28347

    • SHA512

      deb4828dbaec50baf817ef5f9d97bdffa874b32d2def843138cbe1442c682f732f8c2cd16940d0d6f701272de575b383e435d1db15ec0be9128a6735c3cdcc9e

    Score
    10/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks