Overview

overview

8

Static

static

8

=?utf-8?B?...=.xlsm

windows7-x64

1

=?utf-8?B?...=.xlsm

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Mensajes en cuarentena.zip

  • Size

    2.1MB

  • MD5

    eb55a40f333162aaf6c37de0c3fe5f4f

  • SHA1

    c2895b47b055fbbbcfa8cf80c4e439181bf29ca5

  • SHA256

    a6f1beb5e9e7071d22fe188a466a8f0bb8f7f848ec5e98e3814473c92448d8f6

  • SHA512

    2705bbb5e108a2127fea4f0e4d38e6f292b1bf9ed7fdf7a01f5f21c7577f840ea0ec9b848c549368c99c8c3bf661b7663211de3af75a532ab7c6359907942195

  • SSDEEP

    49152:k3z5skvnUtWTSxveN+FCjdzOQhOgHXeoL8waBUvcCKpzHBLUE:k3z5xvnUtWKyzQu98BBUvcCKpzHBL7

Score
8/10
macro

Malware Config

Signatures

  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • Mensajes en cuarentena.zip
    .zip

    Password: 123456

  • 9be84bfb-292f-4631-72a5-08dc7307ad9c/38341bbf-a0d1-472b-6108-bb22b8fdb9ab.eml
    .eml

    Password: 123456

    • https://twitter.com/meliahotelsint

    • https://www.youtube.com/user/solmelia

  • =?utf-8?B?VlBEU0hUX0NodXnhu4NuIHBow6F0IG5oYW5oLnhsc20=?=
    .xlsm office2007

    ThisWorkbook

    Sheet4

    Sheet3

    Sheet7

    Sheet2

    Sheet1

    Module1

    Sheet5

    Sheet6

    Module2

  • attachment-3
    .eml

    Password: 123456

    • https://twitter.com/meliahotelsint

    • https://www.melia.com/en/hotels/vietnam/ha-tinh/melia-vinpearl-ha-tinh

    • https://www.youtube.com/user/solmelia

  • =?utf-8?B?Q8O0bmcgdsSDbiBQQzA2LnBkZg==?=
    .pdf

    Password: 123456

  • email-html-2.txt
    .html
  • email-plain-1.txt
  • image001.png
    .png

    Password: 123456

  • image002.png
    .png

    Password: 123456

  • image003.png
    .png

    Password: 123456

  • email-html-2.txt
    .html
  • email-plain-1.txt
  • image001.png
    .png

    Password: 123456