3cd54cc8015f7f0700f79783ad584abd99a36bd8ebc9f6c6f54a4c9b7d932616 | Triage

Sharing

General

Target

3cd54cc8015f7f0700f79783ad584abd99a36bd8ebc9f6c6f54a4c9b7d932616
Size

37KB
Sample

241120-wpp5ya1enr
MD5

aedc7ea88078d9a1a525be13436407bc
SHA1

312714bb9782851014a686cdc805c4c754c862c8
SHA256

3cd54cc8015f7f0700f79783ad584abd99a36bd8ebc9f6c6f54a4c9b7d932616
SHA512

90469fe50741531fe752e41202bd373f86170267d764c05716d246ef0a38f7affbce56b8987f44aebeb9e06dce5424e40405747de4c86c5064e65a1355fba276
SSDEEP

768:ch/Mvd5dhTnSHMxmxE7l0VGpevZCw4ofmUxjfC30+kS4QyoX0Vy+w+jc:chmd5vS+mxE7WlfXYk4pEVyoA

Score

10^/10

discovery macro xlm

Malware Config

Extracted

Language

xlm4.0

Source

URLs

xlm40.dropper

http://inorte.com.br/awkl2/NFkGvrZkoh7TdwolFM/

xlm40.dropper

http://otoway.com/5/h2syajK78/

xlm40.dropper

http://xhamster-deutsch.biz/wp-content/cache/m1G6/%20

Targets

- Target
  
  3cd54cc8015f7f0700f79783ad584abd99a36bd8ebc9f6c6f54a4c9b7d932616
- Size
  
  37KB
- MD5
  
  aedc7ea88078d9a1a525be13436407bc
- SHA1
  
  312714bb9782851014a686cdc805c4c754c862c8
- SHA256
  
  3cd54cc8015f7f0700f79783ad584abd99a36bd8ebc9f6c6f54a4c9b7d932616
- SHA512
  
  90469fe50741531fe752e41202bd373f86170267d764c05716d246ef0a38f7affbce56b8987f44aebeb9e06dce5424e40405747de4c86c5064e65a1355fba276
- SSDEEP
  
  768:ch/Mvd5dhTnSHMxmxE7l0VGpevZCw4ofmUxjfC30+kS4QyoX0Vy+w+jc:chmd5vS+mxE7WlfXYk4pEVyoA
Score

10^/10

discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2