Overview

overview

10

Static

static

8

510e31a8e4...9c.xls

windows7-x64

10

510e31a8e4...9c.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    510e31a8e4ddf57dfe0884c7169c696bc9abf220f72ec5f494b781d38622cb9c

  • Size

    126KB

  • Sample

    241120-1e63xstnes

  • MD5

    0620255d8611466272b940d17b024bca

  • SHA1

    56fd3c731c46249242deb93fddb9006ce671e6ad

  • SHA256

    510e31a8e4ddf57dfe0884c7169c696bc9abf220f72ec5f494b781d38622cb9c

  • SHA512

    fc0b446d1a316b2474204cf6864e7158eb03c03360705454dbea17a2b0a60d7812520734960c593630aa5bb2b9f1379d3dd5bb4b35bca1bc750c37d6a0ce66d1

  • SSDEEP

    3072:LsKpbdrHYrMue8q7QPX+5xtekEdi8/dgR3Syz+nzQIceCRlCh:QKpbdrHYrMue8q7QPX+5xtFEdi8/dgRo

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://med.devsrm.com/wp-content/gtOOTHi3zkUbn8U6/
xlm40.dropper

http://izytalab.com/includes/1mafAX0kOa/
xlm40.dropper

https://pcsolutionss.com/zSlT4HR92TiOpw5NM/
xlm40.dropper

http://www.doctorcasenave.com/wp-content/O2Z1HMebIXiHYBBS/
xlm40.dropper

https://wpl28.realtyna.com/wp-content/0b0ny5cPM/
xlm40.dropper

http://www.efcballjoint.com/Template/AxEZPOfAa9/

Targets

    • Target

      510e31a8e4ddf57dfe0884c7169c696bc9abf220f72ec5f494b781d38622cb9c

    • Size

      126KB

    • MD5

      0620255d8611466272b940d17b024bca

    • SHA1

      56fd3c731c46249242deb93fddb9006ce671e6ad

    • SHA256

      510e31a8e4ddf57dfe0884c7169c696bc9abf220f72ec5f494b781d38622cb9c

    • SHA512

      fc0b446d1a316b2474204cf6864e7158eb03c03360705454dbea17a2b0a60d7812520734960c593630aa5bb2b9f1379d3dd5bb4b35bca1bc750c37d6a0ce66d1

    • SSDEEP

      3072:LsKpbdrHYrMue8q7QPX+5xtekEdi8/dgR3Syz+nzQIceCRlCh:QKpbdrHYrMue8q7QPX+5xtFEdi8/dgRo

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks