Overview

overview

10

Static

static

5

10ff795955...56.xls

windows7-x64

10

10ff795955...56.xls

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    54a0857ef1b0d0833d4f8d907b6586a7.bin

  • Size

    271KB

  • MD5

    f5522814b9a3a4e44a5dc1b1a16bd5e0

  • SHA1

    00864b45969cec73902905c7f5576116044923a3

  • SHA256

    efe2d9e7b7ea24297926c267b5021b9d14ba5c9c19114f782c6ee55742269809

  • SHA512

    d4bd4760d09457d8848262cfab6ff2eafb423d1fe12ca8e1d2b1438c928ddd2dd8f158b42b091bb759139483e939742f30b4a4fcf2b35bfe0031c5d0b03679c5

  • SSDEEP

    6144:hV/n6aoDevCo4ENdAVmlZwpkP9j3QNNfzPASEzn4ZnNe8bO45u:zxoDnvENdA8aq0OnVQhu

Score
5/10
macro

Malware Config

Signatures

  • Document created with cracked Office version 1 IoCs

    Office document contains Grizli777 string known to be caused by using a cracked version of the software.

    macro

Files

  • 54a0857ef1b0d0833d4f8d907b6586a7.bin
    .zip

    Password: infected

  • 10ff7959558189167db85dd91f6741befe3b5505c6caddfd259c4e3e864c1056.xls
    .xls windows office2003