Overview

overview

8

Static

static

5

New Purcha...53.xls

windows7-x64

8

New Purcha...53.xls

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    New Purchase Order ORD-1268PS-IMP-253.xls

  • Size

    1.0MB

  • MD5

    368215a43ab9d73ba350102662018645

  • SHA1

    5f68ba6a009f47194f19958e162880f6a0d3bd8e

  • SHA256

    5fefb2ee55c0c90204e33dbc06b98fb83c1269a8db289ec31f1acc2a87fa9b4e

  • SHA512

    7d1e635ef0e94290a80009d2145585cf8ebf04d5d77c85f8071db8020cd9079822e2f91e74d08be91b358503e0cd38b4dd862a4d2fe1c500df5cb01610a7539f

  • SSDEEP

    24576:JFe9ySuw7SeFe4x0FGYsaeU2iGUJj8raEvgl:beyPwO+30/sazJvJjfLl

Score
5/10
macro

Malware Config

Signatures

  • Document created with cracked Office version 1 IoCs

    Office document contains Grizli777 string known to be caused by using a cracked version of the software.

    macro

Files

  • New Purchase Order ORD-1268PS-IMP-253.xls
    .xls windows office2003