Resubmissions

30/01/2023, 10:48

230130-mwfqeabf91 5

30/01/2023, 10:42

230130-mr16jsaa99 5

General

  • Target

    Purchase Order-PO013299.xls

  • Size

    445KB

  • MD5

    9efc50489bec2ee331599c6033a7d5d4

  • SHA1

    c3145a2c00f3870a8395eb9216a6280c4c60e8e2

  • SHA256

    91eb3a0224776c18f0e8be0fdef3132fe9beb93ad29141e2c06c56e1631df06d

  • SHA512

    3867c33a778a61a604d037e799d67e5292b3ffab4b99bb282309472d5c1afbae955d24848276ab84acfe25caad9cf24626bc07303ef06282afd72496070b003c

  • SSDEEP

    6144:XaFJkKXiDU7wopQ4A7y/BrZ+RwPONXoRjDhIcp0fDlavx+W26nA30Ik5iaHEsMc5:XaFiKXKmBe3kJHEs5fj5GNWqwr

Score
5/10

Malware Config

Signatures

  • Document created with cracked Office version 1 IoCs

    Office document contains Grizli777 string known to be caused by using a cracked version of the software.

Files

  • Purchase Order-PO013299.xls
    .xls windows office2003