Overview

overview

10

Static

static

8

52bd59ef37...4b.xls

windows7-x64

10

52bd59ef37...4b.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    52bd59ef375ac2847cfc9705e381987ac9014ebffeaeaa4a960fa6df8e442d4b

  • Size

    70KB

  • Sample

    241120-ghnafaxkdj

  • MD5

    7e8d09d3202afd6974ffe88d3faddca8

  • SHA1

    a895fcbad10ae47934acd231164577c42e08c1ff

  • SHA256

    52bd59ef375ac2847cfc9705e381987ac9014ebffeaeaa4a960fa6df8e442d4b

  • SHA512

    0e2b4aae0a20d7287662ee9f171548630e811f56c60b9cc18b73b5af1d57ec834aa35fc1d4753c5bc200269239b9deb813c2eb92428808be8c3f3a036ed52f75

  • SSDEEP

    1536:5+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgAYW/ESKQHS1yXJFadK0lB:kKpb8rGYrMPe3q7Q0XV5xtezEsi8/dg/

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://farschid.de/verkaufsberater_service/OZRw36a2y1CH2clUzY/
xlm40.dropper

http://77homolog.com.br/dev-jealves/GP55wbYNXnp6/
xlm40.dropper

http://geowf.ge/templates/pJRea3Iu3wG/
xlm40.dropper

http://h63402x4.beget.tech/bin/wl0ENiE3BhELXV6V/
xlm40.dropper

http://ecoarch.com.tw/cgi-bin/E/
xlm40.dropper

https://galaxy-catering.com.vn/galxy/Fg1vvhlYJ/

Targets

    • Target

      52bd59ef375ac2847cfc9705e381987ac9014ebffeaeaa4a960fa6df8e442d4b

    • Size

      70KB

    • MD5

      7e8d09d3202afd6974ffe88d3faddca8

    • SHA1

      a895fcbad10ae47934acd231164577c42e08c1ff

    • SHA256

      52bd59ef375ac2847cfc9705e381987ac9014ebffeaeaa4a960fa6df8e442d4b

    • SHA512

      0e2b4aae0a20d7287662ee9f171548630e811f56c60b9cc18b73b5af1d57ec834aa35fc1d4753c5bc200269239b9deb813c2eb92428808be8c3f3a036ed52f75

    • SSDEEP

      1536:5+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgAYW/ESKQHS1yXJFadK0lB:kKpb8rGYrMPe3q7Q0XV5xtezEsi8/dg/

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks