Overview

overview

10

Static

static

8

b61136385a...08.xls

windows7-x64

10

b61136385a...08.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b61136385a3a3f4f8b806b9d752f524238c2649fb9d19e550a05b74d0454b908

  • Size

    142KB

  • Sample

    241120-y5p6zsscjc

  • MD5

    a0fa54adb628ceae505b547c5182b039

  • SHA1

    d616313c2333870a5519f2f56709b1322faf0403

  • SHA256

    b61136385a3a3f4f8b806b9d752f524238c2649fb9d19e550a05b74d0454b908

  • SHA512

    cf015aeb76e13df3549db86d13f6d4ad7762a8ceefe9e3538bbf1c2dc8b6222c9f4bebf75ccc9ec3aa2afcb2e635ce260557546d783402fed4103043f6689d19

  • SSDEEP

    3072:kfKpbdrHYrMue8q7QPX+5xtekEdi8/dgA/c/mrWmngyYXnMJelsSKThsdskl4Wjy:8KpbdrHYrMue8q7QPX+5xtFEdi8/dgAL

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

https://www.greenvalleyschool.com/rand_images/1R9sqGnZOFKmQi/
xlm40.dropper

https://www.travellers-autobarnrv.com/new/m9E2A5lQQ2noHkMP/
xlm40.dropper

https://www.campusconindigital.org/moodle311/oWZgMvUttcPDFNn/
xlm40.dropper

https://www.destinocuenca.com/libraries/oHuqdP31/
xlm40.dropper

https://www.defsalabs.com/videos/i1Dde2yzrONF5Nmhs28j/

Targets

    • Target

      b61136385a3a3f4f8b806b9d752f524238c2649fb9d19e550a05b74d0454b908

    • Size

      142KB

    • MD5

      a0fa54adb628ceae505b547c5182b039

    • SHA1

      d616313c2333870a5519f2f56709b1322faf0403

    • SHA256

      b61136385a3a3f4f8b806b9d752f524238c2649fb9d19e550a05b74d0454b908

    • SHA512

      cf015aeb76e13df3549db86d13f6d4ad7762a8ceefe9e3538bbf1c2dc8b6222c9f4bebf75ccc9ec3aa2afcb2e635ce260557546d783402fed4103043f6689d19

    • SSDEEP

      3072:kfKpbdrHYrMue8q7QPX+5xtekEdi8/dgA/c/mrWmngyYXnMJelsSKThsdskl4Wjy:8KpbdrHYrMue8q7QPX+5xtFEdi8/dgAL

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks