Overview

overview

10

Static

static

8

2663b91a32...f5.xls

windows7-x64

10

2663b91a32...f5.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2663b91a3207ca1cbe597e77bda827af6faf72ac4582dd047df0dd9639ed6ef5

  • Size

    142KB

  • Sample

    241120-qpfzdasjbr

  • MD5

    7e61fa5a05ebbdf32588983f15e65fc2

  • SHA1

    b9a60ea5c38b94659727e002463c1bdcbafa5a2d

  • SHA256

    2663b91a3207ca1cbe597e77bda827af6faf72ac4582dd047df0dd9639ed6ef5

  • SHA512

    6998df2150898fc49b737b25d89fa8c8316aa37d9b331076ee6837fb874ee21729cb4a0ce0d1ee6996aa7139836325cdcf268d85e0b73384f4d90a9d42a58cfb

  • SSDEEP

    3072:kfKpbdrHYrMue8q7QPX+5xtekEdi8/dgR/c/mrWmngyYXnMJelsSKThsdskl4Wjd:8KpbdrHYrMue8q7QPX+5xtFEdi8/dgRA

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://www.certika-bolivia.com/omeltxveatup/9Gb/
xlm40.dropper

https://www.cfoodsnepal.com/index/rvAYVKkJgVWiCwt0wV/
xlm40.dropper

https://www.cgaei.com/fonts/ABuQi/
xlm40.dropper

https://www.chotdonhang.com/noi-dung/w1hMfkjuwAne4W2epiP/
xlm40.dropper

https://www.charmingsoftech.com/css/mJQYPVknv/

Targets

    • Target

      2663b91a3207ca1cbe597e77bda827af6faf72ac4582dd047df0dd9639ed6ef5

    • Size

      142KB

    • MD5

      7e61fa5a05ebbdf32588983f15e65fc2

    • SHA1

      b9a60ea5c38b94659727e002463c1bdcbafa5a2d

    • SHA256

      2663b91a3207ca1cbe597e77bda827af6faf72ac4582dd047df0dd9639ed6ef5

    • SHA512

      6998df2150898fc49b737b25d89fa8c8316aa37d9b331076ee6837fb874ee21729cb4a0ce0d1ee6996aa7139836325cdcf268d85e0b73384f4d90a9d42a58cfb

    • SSDEEP

      3072:kfKpbdrHYrMue8q7QPX+5xtekEdi8/dgR/c/mrWmngyYXnMJelsSKThsdskl4Wjd:8KpbdrHYrMue8q7QPX+5xtFEdi8/dgRA

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks