Malicious
General
Structural Analysis
Config.0
Yara Rules99+
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 2433e76542036ab53b138a98eeda548a
|
| Sha1 | fa75a6ce57ec974345eb05a9d5e587a1eef772be
|
| Sha256 | 148a026124126abf74c390c69fbd0bcebce06b600c6a35630cdce29a85a765fc
|
| Sha384 | 7802cc8d02a278d3c8d5c1f53f8af08699461c4f25e48f41e204884e287c4239a67da65544755d2a2eaaa8a1ef6974ab
|
| Sha512 | 3ae2f70b3d39d85d1befea180ee75815abb20349a90cf3678db2e001d5ac362f68230e30680c897e33a05a6dbc1d8a776505751da043797b15327bb38251d243
|
| SSDeep | 1536:cEXdg7zjhJFdTI4uZNMNhC0br1j0EeewkHergIaYtaBQmxcC6VmIjYobFzM4yede:DXi7z9JFtI2hC0bZUewkaANCzpzru3
|
| TLSH | D59302C5346ED453D3FE96BD12AB0559EC8A60ED50EDCB289E9023646080ECB4D1F8FE
|
File Structure
148a026124126abf74c390c69fbd0bcebce06b600c6a35630cdce29a85a765fc
Office Document
VBA Purging
ATT&CK T1564.007
Malicious
Malicious Document
Blacklist VBA
DeObfuscated
VBScript
Obfuscated
Malicious
[Content_Types].xml
Xml
_rels
.rels
Xml
xl
Malicious
workbook.xml
Xml
_rels
workbook.xml.rels
Xml
worksheets
sheet1.xml
Xml
_rels
sheet1.xml.rels
Xml
drawings
drawing1.xml
Xml
_rels
drawing1.xml.rels
Xml
styles.xml
Xml
media
image3.jpg
image3.jpg-preview.png
vbaProject.bin
Office Document
Malicious
.
Malicious
<Root>
Malicious
VBA
Malicious
dir
Sheet 1
VBA Macro
VBA Purging
ATT&CK T1564.007
Malicious
Malicious Document
Malicious
[Stored VBA]
VBA Macro
Visual Basic
VBA Purging
ATT&CK T1564.007
Malicious
Malicious Document
DeObfuscated
VBScript
Obfuscated
Malicious
[Stored VBA].deobfuscated.vbs
DeObfuscated
VBScript
Malicious
ThisWorkbook
Blacklist VBA
VBA Macro
VBA Purging
ATT&CK T1564.007
Malicious
Malicious Document
Malicious
[Stored VBA]
Blacklist VBA
VBA Macro
Visual Basic
VBA Purging
ATT&CK T1564.007
Malicious
Malicious Document
DeObfuscated
VBScript
Obfuscated
Malicious
[Stored VBA].deobfuscated.vbs
DeObfuscated
VBScript
Malicious
_VBA_PROJECT
PROJECT
PROJECTwm
sharedStrings.xml
Xml
148a026124126abf74c390c69fbd0bcebce06b600c6a35630cdce29a85a765fc (94.83 KB)
File Structure
148a026124126abf74c390c69fbd0bcebce06b600c6a35630cdce29a85a765fc
Office Document
VBA Purging
ATT&CK T1564.007
Malicious
Malicious Document
Blacklist VBA
DeObfuscated
VBScript
Obfuscated
Malicious
[Content_Types].xml
Xml
_rels
.rels
Xml
xl
Malicious
workbook.xml
Xml
_rels
workbook.xml.rels
Xml
worksheets
sheet1.xml
Xml
_rels
sheet1.xml.rels
Xml
drawings
drawing1.xml
Xml
_rels
drawing1.xml.rels
Xml
styles.xml
Xml
media
image3.jpg
image3.jpg-preview.png
vbaProject.bin
Office Document
Malicious
.
Malicious
<Root>
Malicious
VBA
Malicious
dir
Sheet 1
VBA Macro
VBA Purging
ATT&CK T1564.007
Malicious
Malicious Document
Malicious
[Stored VBA]
VBA Macro
Visual Basic
VBA Purging
ATT&CK T1564.007
Malicious
Malicious Document
DeObfuscated
VBScript
Obfuscated
Malicious
[Stored VBA].deobfuscated.vbs
DeObfuscated
VBScript
Malicious
ThisWorkbook
Blacklist VBA
VBA Macro
VBA Purging
ATT&CK T1564.007
Malicious
Malicious Document
Malicious
[Stored VBA]
Blacklist VBA
VBA Macro
Visual Basic
VBA Purging
ATT&CK T1564.007
Malicious
Malicious Document
DeObfuscated
VBScript
Obfuscated
Malicious
[Stored VBA].deobfuscated.vbs
DeObfuscated
VBScript
Malicious
_VBA_PROJECT
PROJECT
PROJECTwm
sharedStrings.xml
Xml
Characteristics
vbaDNA - VBA Stomping & Purging Stategy detection
|
Module Name0 | ||
|---|---|---|
| Sheet 1 | VBA Macro VBA Purging ATT&CK T1564.007 Malicious Malicious Document |
|
| ThisWorkbook | Blacklist VBA VBA Macro VBA Purging ATT&CK T1564.007 Malicious Malicious Document |
|
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.