Overview

overview

10

Static

static

8

e6feaed63c...df.xls

windows7-x64

10

e6feaed63c...df.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e6feaed63c4a2120c51e24c616d6ce3ccb4e6dc2cd294b12c7ca9669242781df

  • Size

    126KB

  • Sample

    241120-lp71msvcjb

  • MD5

    7dd25450386b671d262e17132fd3ff22

  • SHA1

    aae26e98a0edbb0f50c8f65f3d30f5af4f4b9e12

  • SHA256

    e6feaed63c4a2120c51e24c616d6ce3ccb4e6dc2cd294b12c7ca9669242781df

  • SHA512

    bdd6042cfc35f54f5e1214f09ae54a759da0c069dbaaf06288db7b93422897d96dcf433c01f22a943f8665fe5af370f5530f629750922b6c238363eb0fc33b1c

  • SSDEEP

    3072:LsKpbdrHYrMue8q7QPX+5xtekEdi8/dgR3Syz+nzQIceCRlCB:QKpbdrHYrMue8q7QPX+5xtFEdi8/dgRI

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://med.devsrm.com/wp-content/gtOOTHi3zkUbn8U6/
xlm40.dropper

http://izytalab.com/includes/1mafAX0kOa/
xlm40.dropper

https://pcsolutionss.com/zSlT4HR92TiOpw5NM/
xlm40.dropper

http://www.doctorcasenave.com/wp-content/O2Z1HMebIXiHYBBS/
xlm40.dropper

https://wpl28.realtyna.com/wp-content/0b0ny5cPM/
xlm40.dropper

http://www.efcballjoint.com/Template/AxEZPOfAa9/

Targets

    • Target

      e6feaed63c4a2120c51e24c616d6ce3ccb4e6dc2cd294b12c7ca9669242781df

    • Size

      126KB

    • MD5

      7dd25450386b671d262e17132fd3ff22

    • SHA1

      aae26e98a0edbb0f50c8f65f3d30f5af4f4b9e12

    • SHA256

      e6feaed63c4a2120c51e24c616d6ce3ccb4e6dc2cd294b12c7ca9669242781df

    • SHA512

      bdd6042cfc35f54f5e1214f09ae54a759da0c069dbaaf06288db7b93422897d96dcf433c01f22a943f8665fe5af370f5530f629750922b6c238363eb0fc33b1c

    • SSDEEP

      3072:LsKpbdrHYrMue8q7QPX+5xtekEdi8/dgR3Syz+nzQIceCRlCB:QKpbdrHYrMue8q7QPX+5xtFEdi8/dgRI

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks