Overview

overview

10

Static

static

8

d8f78084db...cd.xls

windows7-x64

10

d8f78084db...cd.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d8f78084db9940d5cec6d7bbc0a62860a2c0954955740f302a270449e6dbaccd

  • Size

    142KB

  • Sample

    241120-mjzyhsvfkf

  • MD5

    fd96216f234a0bd676acbb1e0281e671

  • SHA1

    09337d90e7ec74ee16d2ef06daaeb13c9c07c8f5

  • SHA256

    d8f78084db9940d5cec6d7bbc0a62860a2c0954955740f302a270449e6dbaccd

  • SHA512

    0ca13592626e3483c21a9067801531ed5f7631a1c8f9093906e847176aab483f101a34943d06af6662554c9544dbf611017ad5ffd7dc7905beeb4872c527ed0f

  • SSDEEP

    3072:kfKpbdrHYrMue8q7QPX+5xtekEdi8/dgR/c/mrWmngyYXnMJelsSKThsdskl4WjN:8KpbdrHYrMue8q7QPX+5xtFEdi8/dgRQ

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://www.certika-bolivia.com/omeltxveatup/9Gb/
xlm40.dropper

https://www.cfoodsnepal.com/index/rvAYVKkJgVWiCwt0wV/
xlm40.dropper

https://www.cgaei.com/fonts/ABuQi/
xlm40.dropper

https://www.chotdonhang.com/noi-dung/w1hMfkjuwAne4W2epiP/
xlm40.dropper

https://www.charmingsoftech.com/css/mJQYPVknv/

Targets

    • Target

      d8f78084db9940d5cec6d7bbc0a62860a2c0954955740f302a270449e6dbaccd

    • Size

      142KB

    • MD5

      fd96216f234a0bd676acbb1e0281e671

    • SHA1

      09337d90e7ec74ee16d2ef06daaeb13c9c07c8f5

    • SHA256

      d8f78084db9940d5cec6d7bbc0a62860a2c0954955740f302a270449e6dbaccd

    • SHA512

      0ca13592626e3483c21a9067801531ed5f7631a1c8f9093906e847176aab483f101a34943d06af6662554c9544dbf611017ad5ffd7dc7905beeb4872c527ed0f

    • SSDEEP

      3072:kfKpbdrHYrMue8q7QPX+5xtekEdi8/dgR/c/mrWmngyYXnMJelsSKThsdskl4WjN:8KpbdrHYrMue8q7QPX+5xtFEdi8/dgRQ

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks