Overview

overview

10

Static

static

8

31d8a2c5d9...0a.xls

windows7-x64

10

31d8a2c5d9...0a.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    31d8a2c5d9df2aa39004e391d8f96a94845f86dc4f895b7a0c93e89d4387140a

  • Size

    126KB

  • Sample

    241120-jq8mfstcnh

  • MD5

    504ddf33b738dd346fc97e7d97165cf9

  • SHA1

    16b847a66aed257e80486ed20b9defdcc368b5fb

  • SHA256

    31d8a2c5d9df2aa39004e391d8f96a94845f86dc4f895b7a0c93e89d4387140a

  • SHA512

    a081f3d01610a2c0afe4ee196e50070a457851fbb601d0e6dd6b5965de6dd352ec2f754b2e34e3da494316fada86a919634a7079ccd64adc988e83e5a4ff5641

  • SSDEEP

    3072:LsKpbdrHYrMue8q7QPX+5xtekEdi8/dgR3Syz+nzQIceCRlC9:QKpbdrHYrMue8q7QPX+5xtFEdi8/dgRc

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://med.devsrm.com/wp-content/gtOOTHi3zkUbn8U6/
xlm40.dropper

http://izytalab.com/includes/1mafAX0kOa/
xlm40.dropper

https://pcsolutionss.com/zSlT4HR92TiOpw5NM/
xlm40.dropper

http://www.doctorcasenave.com/wp-content/O2Z1HMebIXiHYBBS/
xlm40.dropper

https://wpl28.realtyna.com/wp-content/0b0ny5cPM/
xlm40.dropper

http://www.efcballjoint.com/Template/AxEZPOfAa9/

Targets

    • Target

      31d8a2c5d9df2aa39004e391d8f96a94845f86dc4f895b7a0c93e89d4387140a

    • Size

      126KB

    • MD5

      504ddf33b738dd346fc97e7d97165cf9

    • SHA1

      16b847a66aed257e80486ed20b9defdcc368b5fb

    • SHA256

      31d8a2c5d9df2aa39004e391d8f96a94845f86dc4f895b7a0c93e89d4387140a

    • SHA512

      a081f3d01610a2c0afe4ee196e50070a457851fbb601d0e6dd6b5965de6dd352ec2f754b2e34e3da494316fada86a919634a7079ccd64adc988e83e5a4ff5641

    • SSDEEP

      3072:LsKpbdrHYrMue8q7QPX+5xtekEdi8/dgR3Syz+nzQIceCRlC9:QKpbdrHYrMue8q7QPX+5xtFEdi8/dgRc

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks