Overview

overview

10

Static

static

8

333b5ee82b...3.xlsb

windows7_x64

10

333b5ee82b...3.xlsb

windows10-2004_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    333b5ee82bd5f8e66e5a18b46812fddc040b5a43857381c639ceb8636d3b5f03

  • Size

    357KB

  • Sample

    220329-te9eqabhgl

  • MD5

    302944e64457d1ab84ba3bde66786111

  • SHA1

    4d0d53c2624a211395e29f7296b352f18d3ae3f4

  • SHA256

    333b5ee82bd5f8e66e5a18b46812fddc040b5a43857381c639ceb8636d3b5f03

  • SHA512

    964032cc2364d8ac65e6ce2c93a3b0627b1e092e7d86bc7d0cc84f18b63f7514b8cd1827b16beb9b2cbee613570c8a2f1d54180c5cb9d8c9611099a1aa8721ab

Score
10/10
macroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://skifashion.pl/ds/161120.gif

Targets

    • Target

      333b5ee82bd5f8e66e5a18b46812fddc040b5a43857381c639ceb8636d3b5f03

    • Size

      357KB

    • MD5

      302944e64457d1ab84ba3bde66786111

    • SHA1

      4d0d53c2624a211395e29f7296b352f18d3ae3f4

    • SHA256

      333b5ee82bd5f8e66e5a18b46812fddc040b5a43857381c639ceb8636d3b5f03

    • SHA512

      964032cc2364d8ac65e6ce2c93a3b0627b1e092e7d86bc7d0cc84f18b63f7514b8cd1827b16beb9b2cbee613570c8a2f1d54180c5cb9d8c9611099a1aa8721ab

    Score
    10/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks