Overview

overview

10

Static

static

8

44cf7efa97...5a.xls

windows7-x64

10

44cf7efa97...5a.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    44cf7efa97ac25231b0a7795d448fb2d1afd63e02521b5dc5f256a0335583e5a

  • Size

    70KB

  • Sample

    241120-ypltma1hph

  • MD5

    6c6b68e5c3cf4462cb453109ea305aa8

  • SHA1

    2d9627a9076132949a09be5ccaa118d04f7a873b

  • SHA256

    44cf7efa97ac25231b0a7795d448fb2d1afd63e02521b5dc5f256a0335583e5a

  • SHA512

    a3aeb55f739342f1f03dece1113766ecc064559052807a763a21920b193461134139921ce94ef929f21f3922e4a87b5278274cac9caf7240013bb317115743e3

  • SSDEEP

    1536:5+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgAYW/ESKQHS1yXJFadK0VB:kKpb8rGYrMPe3q7Q0XV5xtezEsi8/dgv

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://farschid.de/verkaufsberater_service/OZRw36a2y1CH2clUzY/
xlm40.dropper

http://77homolog.com.br/dev-jealves/GP55wbYNXnp6/
xlm40.dropper

http://geowf.ge/templates/pJRea3Iu3wG/
xlm40.dropper

http://h63402x4.beget.tech/bin/wl0ENiE3BhELXV6V/
xlm40.dropper

http://ecoarch.com.tw/cgi-bin/E/
xlm40.dropper

https://galaxy-catering.com.vn/galxy/Fg1vvhlYJ/

Targets

    • Target

      44cf7efa97ac25231b0a7795d448fb2d1afd63e02521b5dc5f256a0335583e5a

    • Size

      70KB

    • MD5

      6c6b68e5c3cf4462cb453109ea305aa8

    • SHA1

      2d9627a9076132949a09be5ccaa118d04f7a873b

    • SHA256

      44cf7efa97ac25231b0a7795d448fb2d1afd63e02521b5dc5f256a0335583e5a

    • SHA512

      a3aeb55f739342f1f03dece1113766ecc064559052807a763a21920b193461134139921ce94ef929f21f3922e4a87b5278274cac9caf7240013bb317115743e3

    • SSDEEP

      1536:5+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgAYW/ESKQHS1yXJFadK0VB:kKpb8rGYrMPe3q7Q0XV5xtezEsi8/dgv

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks