Overview

overview

10

Static

static

8

0ef08095b9...08.xls

windows7-x64

10

0ef08095b9...08.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0ef08095b9ef39787a7f00e186fbc9cb2a9aa82bdbe56c0577b65be35fb83708

  • Size

    78KB

  • Sample

    241120-1527natgrb

  • MD5

    118ae5a49bdcd0dfd675bab78b968828

  • SHA1

    b1a24c85e541eb06174805a212481fce887362d7

  • SHA256

    0ef08095b9ef39787a7f00e186fbc9cb2a9aa82bdbe56c0577b65be35fb83708

  • SHA512

    bdc532b477b20eb0fffebd7e573f1c4893978266348f347aef392e23f08e4179363d64fbeeca5a2889375129845ec5625e227ea3664a60ce33c765575dd48a48

  • SSDEEP

    1536:ZwKpb8rGYrMPe3q7Q0XV5xtezEsi8/dg+dXTZhKEw+PmYEJ8zobcW13G+8eJNfn1:CKpb8rGYrMPe3q7Q0XV5xtezEsi8/dgX

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://hostal-alfonso12.com/clases/SKtPvv/
xlm40.dropper

http://howesitgoing.com/images/HyaDnlbl6K7tbh2Lugys/
xlm40.dropper

https://www.jdserralheria.com.br/cgi-bin/KFG6/
xlm40.dropper

http://inteirado.com.br/fonts/7dJCVvuE5x3YrGQs2oJz/
xlm40.dropper

http://iciee.untirta.ac.id/test/GccRw/
xlm40.dropper

https://ideoso.com.tw/cgi-bin/zLrnBd2Eg1N3UVy5yL/

Targets

    • Target

      0ef08095b9ef39787a7f00e186fbc9cb2a9aa82bdbe56c0577b65be35fb83708

    • Size

      78KB

    • MD5

      118ae5a49bdcd0dfd675bab78b968828

    • SHA1

      b1a24c85e541eb06174805a212481fce887362d7

    • SHA256

      0ef08095b9ef39787a7f00e186fbc9cb2a9aa82bdbe56c0577b65be35fb83708

    • SHA512

      bdc532b477b20eb0fffebd7e573f1c4893978266348f347aef392e23f08e4179363d64fbeeca5a2889375129845ec5625e227ea3664a60ce33c765575dd48a48

    • SSDEEP

      1536:ZwKpb8rGYrMPe3q7Q0XV5xtezEsi8/dg+dXTZhKEw+PmYEJ8zobcW13G+8eJNfn1:CKpb8rGYrMPe3q7Q0XV5xtezEsi8/dgX

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks