Overview

overview

10

Static

static

8

3e23185205...75.xls

windows7-x64

10

3e23185205...75.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3e23185205367d1bce53264bcae264b12a40c8e27a42bc09c581f3aa24e09575

  • Size

    126KB

  • Sample

    241120-yemceasjbv

  • MD5

    6e59a507ed94d20d5c96d8de975a4f66

  • SHA1

    e9ba65d5b3e09e9b8f12ba63c63689b762b125a0

  • SHA256

    3e23185205367d1bce53264bcae264b12a40c8e27a42bc09c581f3aa24e09575

  • SHA512

    528d55e25a4bef0d9f5ffaae8b64e3657a1793c5e7bf34c6fdb1fe767ea4948c6efb9a724f01332a91fa3b0b0f10a79c11e620d4b48635c4b20228f9e7f9b427

  • SSDEEP

    3072:EsKpbdrHYrMue8q7QPX+5xtekEdi8/dgt3Syz+nzQIceCRlC8:7KpbdrHYrMue8q7QPX+5xtFEdi8/dgtF

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://drvishalchestclinic.com/wp-includes/SqqCZQ6y2uyFF/
xlm40.dropper

http://funestotal.com/5aclo1em/21U/
xlm40.dropper

http://g-wizcomputers.com/party/61W0ovBu86/
xlm40.dropper

http://primefind.com/1mall-uk/h5/
xlm40.dropper

http://la-csi.com/mt-admin/BB7/
xlm40.dropper

https://pancook.com/newsite/H6xxeLefX1I2vgJFM1Y/

Targets

    • Target

      3e23185205367d1bce53264bcae264b12a40c8e27a42bc09c581f3aa24e09575

    • Size

      126KB

    • MD5

      6e59a507ed94d20d5c96d8de975a4f66

    • SHA1

      e9ba65d5b3e09e9b8f12ba63c63689b762b125a0

    • SHA256

      3e23185205367d1bce53264bcae264b12a40c8e27a42bc09c581f3aa24e09575

    • SHA512

      528d55e25a4bef0d9f5ffaae8b64e3657a1793c5e7bf34c6fdb1fe767ea4948c6efb9a724f01332a91fa3b0b0f10a79c11e620d4b48635c4b20228f9e7f9b427

    • SSDEEP

      3072:EsKpbdrHYrMue8q7QPX+5xtekEdi8/dgt3Syz+nzQIceCRlC8:7KpbdrHYrMue8q7QPX+5xtFEdi8/dgtF

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks