Behavioral task
behavioral1
Sample
tus-dierdorf-leichtathletik.de_downloads;session=b018c88d8ed52f379dee81f58541f726&focus=cmtoi_de_dta.xls
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
tus-dierdorf-leichtathletik.de_downloads;session=b018c88d8ed52f379dee81f58541f726&focus=cmtoi_de_dta.xls
Resource
win10v2004-20230220-en
General
-
Target
tus-dierdorf-leichtathletik.de_downloads;session=b018c88d8ed52f379dee81f58541f726&focus=cmtoi_de_dtag_hosting_hpcreator_widget_download_15359539&path=download.action&frame=cmtoi_de_dtag_hosting_hpcreator_widget_download_15359539_id=203719.xls
-
Size
31KB
-
MD5
bcd187ea8e2fd5f81125536eb1688385
-
SHA1
3d28d6647d51dbb4c0513ee48a1788707995e78d
-
SHA256
b4dbbc2c14a655268082a1b2dae64516e3112ce229afb2e7ad2f18e30e80b530
-
SHA512
189a402ef7ddcf3db023f779704f11c94ff76923f0c541672f881759d8bad2fc8f6576946c9e07e358cba9057ef51ed7e25a97bf2a1f63647ecf16feb94fe9c3
-
SSDEEP
768:br+gdvPIDKpcTxGT1dTGy/GFhncn5roomkLQfFWrHTUsixl43sa8W2:br+gdvPIDKpcTxGT1dTGy/GFhncn5rvg
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
resource yara_rule sample office_macro_on_action -
resource sample
Files
-
tus-dierdorf-leichtathletik.de_downloads;session=b018c88d8ed52f379dee81f58541f726&focus=cmtoi_de_dtag_hosting_hpcreator_widget_download_15359539&path=download.action&frame=cmtoi_de_dtag_hosting_hpcreator_widget_download_15359539_id=203719.xls.xls windows office2003
DieseArbeitsmappe
Tabelle1