Overview

overview

10

Static

static

8

2bd2e09206...59.xls

windows7-x64

10

2bd2e09206...59.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2bd2e09206cc74595145706ec62f690b43cabd32dd3010e40281568d898de859

  • Size

    40KB

  • Sample

    241121-a8z9csxkgz

  • MD5

    c097b3109df25c2859c260ade6afdb23

  • SHA1

    4d87936e3b1842f5c4bf57072fdf1191212262f3

  • SHA256

    2bd2e09206cc74595145706ec62f690b43cabd32dd3010e40281568d898de859

  • SHA512

    f8c9f0b5f73288f8270a364630e124b04bb3e3b3de3e61b5f4c85092f9b95c34f920aac3cd64326975fb01b09cf38fa970340a21d2aff19564f2662dc075f45d

  • SSDEEP

    768:pkZKpb8rGYrMPe3q7Q0XV5xtezEs/68/dgA9CBn9kC+xbPcfmBqGOtwvcVoclE:p+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dV

Score
10/10
discoverymacroxlm

Malware Config

Extracted

Language
xlm4.0
Source
URLs
xlm40.dropper

http://jimlowry.com/9tag/Mv2ZYY61NBOf8/
xlm40.dropper

http://stainedglassexpress.com/classes/veV/
xlm40.dropper

https://n-process.jp/base/HPH/
xlm40.dropper

http://www.4-hzim.org.zw/language/anCpC49vTB4/
xlm40.dropper

http://salledemode.com/tgroup.ge/6USqthYYyIPw4V/
xlm40.dropper

http://poiterdesign.eu/huur/nc/

Targets

    • Target

      2bd2e09206cc74595145706ec62f690b43cabd32dd3010e40281568d898de859

    • Size

      40KB

    • MD5

      c097b3109df25c2859c260ade6afdb23

    • SHA1

      4d87936e3b1842f5c4bf57072fdf1191212262f3

    • SHA256

      2bd2e09206cc74595145706ec62f690b43cabd32dd3010e40281568d898de859

    • SHA512

      f8c9f0b5f73288f8270a364630e124b04bb3e3b3de3e61b5f4c85092f9b95c34f920aac3cd64326975fb01b09cf38fa970340a21d2aff19564f2662dc075f45d

    • SSDEEP

      768:pkZKpb8rGYrMPe3q7Q0XV5xtezEs/68/dgA9CBn9kC+xbPcfmBqGOtwvcVoclE:p+Kpb8rGYrMPe3q7Q0XV5xtezEsi8/dV

    Score
    10/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks