Overview

overview

10

Static

static

8

2014维修...��.xls

windows7-x64

10

2014维修...��.xls

windows10-2004-x64

10

维修一�...��.xls

windows7-x64

10

维修一�...��.xls

windows10-2004-x64

10

维修一�...��.xls

windows7-x64

10

维修一�...��.xls

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a36a189ee6c1ae3518a71f7560b3046facc30942f907f9244cf1b18573bbe862

  • Size

    125KB

  • MD5

    0fcf63d7ee81183e7908fc7b2ef6c22e

  • SHA1

    80439fa3edea183742f9aa2f2367e5cccc8b184f

  • SHA256

    a36a189ee6c1ae3518a71f7560b3046facc30942f907f9244cf1b18573bbe862

  • SHA512

    3da72741f4b19cae9de384e585ee5dd231b6e1832cba09b563fb1f2e6052ffa695d2b757d9319927e21226f093b8c73b749b8dd6b2fa68be3b87a5019961d6c3

  • SSDEEP

    3072:tLyDtw+rKPuhtQZ2Rs9DubyPzoANCX3Obj+/arqMxaQua4:t+hw+ZhtQARs1UELNAe3Iazua4

Score
8/10
macroxlm

Malware Config

Signatures

  • Suspicious Office macro 3 IoCs

    Office document equipped with 4.0 macros.

    macroxlm

Files

  • a36a189ee6c1ae3518a71f7560b3046facc30942f907f9244cf1b18573bbe862
    .zip
  • 2014维修一车间三组修旧利废核算表.xls
    .xls .vbs windows office2003
  • 维修一三组10月月报.xls
    .xls .vbs windows office2003
  • 维修一三组10月运转设备报表.xls
    .xls windows office2003