General

  • Target

    4ebd2fd442f20568cb284f2e3d7af7157ef6811b27886fca3e1879c120905c0b

  • Size

    101KB

  • Sample

    241111-vchpnasajr

  • MD5

    8b795b65da02d34b98d1a026a08521b4

  • SHA1

    ef9bee187eeb8441f0be5060ee5d2af06474b18b

  • SHA256

    4ebd2fd442f20568cb284f2e3d7af7157ef6811b27886fca3e1879c120905c0b

  • SHA512

    d21689cf22b5185810471ccf1efcae29fefef12e1ed5e36a03ea706a131fa8eb2cf55c23e53c471232b2256cb679526e0b77072527d968e05e405496cca31370

  • SSDEEP

    3072:RKpb8rGYrMPe3q7Q0XV5xtezE8vG8UM+/bOZzbqkn6RND9fxuss8O2:RKpb8rGYrMPe3q7Q0XV5xtuE8vG8UM+P

Score
10/10

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://decorusfinancial.com/wp-content/7dODakeZZ83fJi/

xlm40.dropper

https://e-kinerja.ntbprov.go.id/aset/sAeaEvaSxGhvnsuFE/

xlm40.dropper

http://facts-jo.com/init/jLQY2FpesnIGi0qHqz/

xlm40.dropper

http://fashionbyprincessmelodicaah.com/4185PINT/jwh2cwjFHLZL/

xlm40.dropper

http://easiercommunications.com/wp-content/yqNxi8IKbRIt7akB/

Targets

    • Target

      4ebd2fd442f20568cb284f2e3d7af7157ef6811b27886fca3e1879c120905c0b

    • Size

      101KB

    • MD5

      8b795b65da02d34b98d1a026a08521b4

    • SHA1

      ef9bee187eeb8441f0be5060ee5d2af06474b18b

    • SHA256

      4ebd2fd442f20568cb284f2e3d7af7157ef6811b27886fca3e1879c120905c0b

    • SHA512

      d21689cf22b5185810471ccf1efcae29fefef12e1ed5e36a03ea706a131fa8eb2cf55c23e53c471232b2256cb679526e0b77072527d968e05e405496cca31370

    • SSDEEP

      3072:RKpb8rGYrMPe3q7Q0XV5xtezE8vG8UM+/bOZzbqkn6RND9fxuss8O2:RKpb8rGYrMPe3q7Q0XV5xtuE8vG8UM+P

    Score
    10/10

MITRE ATT&CK Enterprise v15

Tasks