Overview

overview

10

Static

static

8

bf1dba0bd6...58.xls

windows7-x64

10

bf1dba0bd6...58.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bf1dba0bd607b4d145f7a1a55503b93c767433503e8e5877bf0e6a3932984858

  • Size

    53KB

  • Sample

    241120-tpb7zayfme

  • MD5

    2d39d97b64b8d54c00660a9ad856c41f

  • SHA1

    40a0bbe29ef72e5a2310cdf937715ce7e0b10271

  • SHA256

    bf1dba0bd607b4d145f7a1a55503b93c767433503e8e5877bf0e6a3932984858

  • SHA512

    5db92e4f1cca45b628204cbab3d2127e693dd6acbe4b6fd6b1859e7b136466bc66a03a7d2a5401ae4bb1f6b72285ff0ff25d65e1164bb946452cc73d7ce06c22

  • SSDEEP

    1536:te2tfQXi8vgLZkTOHkQT51Vp6AwPe8gQ66aOKr:82tfQXi8vgLZkTOHkQT51Vp6AwPe8gQu

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://gandhitoday.org/video/6JvA8/
xlm40.dropper

https://fpd.cl/cgi-bin/N/
xlm40.dropper

http://djunreal.co.uk/site/ApOKpFad/
xlm40.dropper

http://genccagdas.com.tr/assets/doWHIxLe7e/
xlm40.dropper

http://johnsonsmedia.it/img/ZBNk0xpRL8YEVl/
xlm40.dropper

http://grafischer.ch/fit-well/wDPTwKtZPoWL12/

Targets

    • Target

      bf1dba0bd607b4d145f7a1a55503b93c767433503e8e5877bf0e6a3932984858

    • Size

      53KB

    • MD5

      2d39d97b64b8d54c00660a9ad856c41f

    • SHA1

      40a0bbe29ef72e5a2310cdf937715ce7e0b10271

    • SHA256

      bf1dba0bd607b4d145f7a1a55503b93c767433503e8e5877bf0e6a3932984858

    • SHA512

      5db92e4f1cca45b628204cbab3d2127e693dd6acbe4b6fd6b1859e7b136466bc66a03a7d2a5401ae4bb1f6b72285ff0ff25d65e1164bb946452cc73d7ce06c22

    • SSDEEP

      1536:te2tfQXi8vgLZkTOHkQT51Vp6AwPe8gQ66aOKr:82tfQXi8vgLZkTOHkQT51Vp6AwPe8gQu

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks