Overview

overview

10

Static

static

8

doc_0325.xls

windows7-x64

10

doc_0325.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a70eab32edf7555356b03f5970fea8c5ad18ce5a7b6a32bc59f9f826a7c39821

  • Size

    22KB

  • Sample

    241120-p23s8sxemm

  • MD5

    27a369ae280934695ad0dbac8ffb10ae

  • SHA1

    47eae241b2e86fca7c91d537e80251768758701a

  • SHA256

    a70eab32edf7555356b03f5970fea8c5ad18ce5a7b6a32bc59f9f826a7c39821

  • SHA512

    32053a9ededebadd79f891cfb72210d8649761be42d2d385f5102e1cfdbb5a70c0a21659dfcb5f7f257c08fc67097d23782abc642e175dfcc0ac536231dfd309

  • SSDEEP

    384:yooZU6OwdHuP9Mbqpw0lYnAIkVFl7ByMIaZfmKUoCn4EALz6cHWrepg:yS6BdOPHa0+nAHVFGMIaZOKiARcepg

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://clipacc.com/img/doXw68d7bqxxhwuxNb0N/
xlm40.dropper

http://chadhymas.com/wp-admin/yo11rETlmzRqZlC56B/
xlm40.dropper

http://mulmatdol.com/adm/YO7lpLlRnPIM/
xlm40.dropper

http://fmesperanza945.com/fonts/Mta/
xlm40.dropper

http://clanwatson.co.uk/personal/DxlCbK5yxbqq1jqP/
xlm40.dropper

https://classicpaint.net/wp-content/Vx6iP4KOyoZuiwsyW/

Targets

    • Target

      doc_0325.xls

    • Size

      56KB

    • MD5

      ece5ec6ec0176cd9635b67a11ed54637

    • SHA1

      bd525fedf8e5aaf69648429e8b8ef39066a30bee

    • SHA256

      73d07c4e75597a620757d8b8b280c78a1395394785b2f43b10e12d6afb4a01ad

    • SHA512

      bd5967cba4e9aec5835507c42fa589c3429d69c5fd2dccd7f54569121e8856c8495055bc8ff65ecf5f17b7f2805e8be30e15393079e55786d030200dcbf1b28d

    • SSDEEP

      1536:IsKpb8rGYrMPe3q7Q0XV5xtezEsi8/dgX5G9XSZ4Jvr:9Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgm

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks