Overview

overview

8

Static

static

8

medservice...0.xlsm

windows7-x64

1

medservice...0.xlsm

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    medservice.kz_download_price_prais-list-petropavlovsk_13_03_2020.xlsm.xls

  • Size

    425KB

  • Sample

    230402-2qkjqsbb29

  • MD5

    5b1c95d22b0fdf39d9982cd242d45cc0

  • SHA1

    9db311be83677156fd9a136ba6775843cd156ea8

  • SHA256

    39cc1e48d7b448de66acd1309a605e3c1635410d894d766207363c12438d3be3

  • SHA512

    f74fc544ffad28293190819f19e66f5db675b8cd470df4c7f0e1439c7084fe3ca03e69bbf48ff4fb8876a340ffe9bd34feac15bd77f5d3af2059b6638dfe5d68

  • SSDEEP

    12288:qx0doscAPSngYLO10oxeNA/FG+eEn+xgx/MKUcMKLGWyAR70a:o0doscETYLozQC/uc+KF5Mz7eb

Score
8/10
macro

Malware Config

Targets

    • Target

      medservice.kz_download_price_prais-list-petropavlovsk_13_03_2020.xlsm.xls

    • Size

      425KB

    • MD5

      5b1c95d22b0fdf39d9982cd242d45cc0

    • SHA1

      9db311be83677156fd9a136ba6775843cd156ea8

    • SHA256

      39cc1e48d7b448de66acd1309a605e3c1635410d894d766207363c12438d3be3

    • SHA512

      f74fc544ffad28293190819f19e66f5db675b8cd470df4c7f0e1439c7084fe3ca03e69bbf48ff4fb8876a340ffe9bd34feac15bd77f5d3af2059b6638dfe5d68

    • SSDEEP

      12288:qx0doscAPSngYLO10oxeNA/FG+eEn+xgx/MKUcMKLGWyAR70a:o0doscETYLozQC/uc+KF5Mz7eb

    Score
    1/10
    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

1
T1112

Credential Access

Discovery

Query Registry

2
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Tasks