Malicious
PortFormKit 1.18.xlsm
MS Excel Document | MD5: 9f236d9b55764468389c509514d4174b | Size: 394.21 KB | application/vnd.ms-excel
MS Excel Document
MD5: 9f236d9b55764468389c509514d4174b
Size: 394.21 KB
application/vnd.ms-excel
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 9f236d9b55764468389c509514d4174b
|
| Sha1 | 2e9a8cbe7708741497b7a48cb5997b7c09f78b88
|
| Sha256 | bfdbdae3b6e1adb63f63a480d97c0ad5f97f8561d2678aa118105cef63fabf21
|
| Sha384 | f338eb6d0377764e3bca0598c23e92413370956a7c9b5e37736aab6ee1608bf94527315a1299ea66422c0f67f38e9334
|
| Sha512 | ce2e7d742a971daf586f5e9ce8f66fd53bc92dd6854c5e70d188ae156b098bf70d08612c0b7a8dd8fafd6136599de99b6256416049c52981cff566fc4908c712
|
| SSDeep | 12288:3QvHbFT1lQyfaU6LjeA+vZMvrQN0Em0gK:3uh5CUevC030gK
|
| TLSH | 6584011C9154DAEDC722E538E76C86E0B84D16239085E10B35D8790C7FA66DB3BCE39E
|
File Structure
[Content_Types].xml
_rels
.rels
xl
workbook.xml
_rels
workbook.xml.rels
worksheets
sheet1.xml
sheet2.xml
sheet3.xml
sheet4.xml
sheet5.xml
sheet6.xml
sheet7.xml
sheet8.xml
sheet9.xml
sheet10.xml
sheet11.xml
sheet12.xml
sheet13.xml
sheet14.xml
sheet15.xml
sheet16.xml
sheet17.xml
sheet18.xml
sheet19.xml
sheet20.xml
sheet21.xml
sheet22.xml
sheet23.xml
sheet24.xml
sheet25.xml
sheet26.xml
sheet27.xml
sheet28.xml
sheet29.xml
sheet30.xml
_rels
sheet3.xml.rels
sheet4.xml.rels
sheet5.xml.rels
sheet6.xml.rels
sheet7.xml.rels
sheet8.xml.rels
sheet9.xml.rels
sheet10.xml.rels
sheet11.xml.rels
sheet12.xml.rels
sheet13.xml.rels
sheet15.xml.rels
sheet16.xml.rels
sheet17.xml.rels
sheet18.xml.rels
sheet19.xml.rels
sheet20.xml.rels
sheet21.xml.rels
sheet22.xml.rels
sheet23.xml.rels
sheet24.xml.rels
sheet25.xml.rels
sheet26.xml.rels
sheet27.xml.rels
sheet29.xml.rels
sheet30.xml.rels
sheet14.xml.rels
sheet1.xml.rels
theme
theme1.xml
styles.xml
sharedStrings.xml
drawings
drawing1.xml
vmlDrawing1.vml
vbaProject.bin
Root Entry
PROJECT
PROJECTwm
GC
f
o
CompObj
VBFrame
CMG
VBFrame
DPB
f
VBFrame
VBA
CMG
CMG
dir
DPB
DPB
Sheet5
Sheet5
Sheet7
Sheet7
Sheet8
Sheet8
[Decompiled VBA]
Malicious
Sheet11
Sheet11
Sheet13
Sheet13
Sheet15
Sheet15
Sheet17
Sheet17
Sheet19
Sheet19
Sheet24
Sheet24
Sheet27
Sheet27
Sheet28
Sheet28
__SRP_0
__SRP_1
__SRP_2
__SRP_3
__SRP_4
__SRP_5
__SRP_6
__SRP_7
__SRP_8
__SRP_9
__SRP_a
__SRP_b
__SRP_c
__SRP_d
__SRP_e
__SRP_f
UIModule
UIModule
__SRP_10
__SRP_11
__SRP_12
__SRP_13
__SRP_14
__SRP_15
__SRP_16
__SRP_17
__SRP_18
__SRP_19
__SRP_1a
__SRP_1b
__SRP_1c
__SRP_1d
__SRP_1e
__SRP_1f
__SRP_20
__SRP_21
__SRP_22
__SRP_23
__SRP_24
__SRP_25
__SRP_26
__SRP_27
__SRP_28
__SRP_29
__SRP_2a
__SRP_2b
__SRP_2c
__SRP_2d
__SRP_2e
__SRP_2f
__SRP_30
__SRP_31
__SRP_32
__SRP_33
__SRP_34
__SRP_35
__SRP_36
__SRP_37
__SRP_38
__SRP_39
__SRP_3a
__SRP_3b
__SRP_3c
__SRP_3d
__SRP_3e
__SRP_3f
__SRP_40
__SRP_41
__SRP_42
__SRP_43
__SRP_44
__SRP_45
__SRP_46
__SRP_47
__SRP_48
__SRP_49
__SRP_4a
__SRP_4b
__SRP_4c
__SRP_4d
__SRP_4e
__SRP_4f
__SRP_50
__SRP_51
__SRP_52
__SRP_53
__SRP_54
__SRP_55
SelfCheck
SelfCheck
ProgressForm
ProgressForm
SheetManager
SheetManager
ThisWorkbook
ThisWorkbook
_VBA_PROJECT
[Decompiled VBA]
Malicious
ProgressForm
f
o
VBFrame
i02
f
o
CompObj
metadata.xml
printerSettings
printerSettings1.bin
printerSettings2.bin
printerSettings27.bin
printerSettings4.bin
printerSettings9.bin
printerSettings12.bin
printerSettings19.bin
printerSettings23.bin
printerSettings24.bin
ctrlProps
ctrlProp1.xml
tables
calcChain.xml
customUI
customUI14.xml
PortFormKit 1.18.xlsm (394.21 KB)
File Structure
[Content_Types].xml
_rels
.rels
xl
workbook.xml
_rels
workbook.xml.rels
worksheets
sheet1.xml
sheet2.xml
sheet3.xml
sheet4.xml
sheet5.xml
sheet6.xml
sheet7.xml
sheet8.xml
sheet9.xml
sheet10.xml
sheet11.xml
sheet12.xml
sheet13.xml
sheet14.xml
sheet15.xml
sheet16.xml
sheet17.xml
sheet18.xml
sheet19.xml
sheet20.xml
sheet21.xml
sheet22.xml
sheet23.xml
sheet24.xml
sheet25.xml
sheet26.xml
sheet27.xml
sheet28.xml
sheet29.xml
sheet30.xml
_rels
sheet3.xml.rels
sheet4.xml.rels
sheet5.xml.rels
sheet6.xml.rels
sheet7.xml.rels
sheet8.xml.rels
sheet9.xml.rels
sheet10.xml.rels
sheet11.xml.rels
sheet12.xml.rels
sheet13.xml.rels
sheet15.xml.rels
sheet16.xml.rels
sheet17.xml.rels
sheet18.xml.rels
sheet19.xml.rels
sheet20.xml.rels
sheet21.xml.rels
sheet22.xml.rels
sheet23.xml.rels
sheet24.xml.rels
sheet25.xml.rels
sheet26.xml.rels
sheet27.xml.rels
sheet29.xml.rels
sheet30.xml.rels
sheet14.xml.rels
sheet1.xml.rels
theme
theme1.xml
styles.xml
sharedStrings.xml
drawings
drawing1.xml
vmlDrawing1.vml
vbaProject.bin
Root Entry
PROJECT
PROJECTwm
GC
f
o
CompObj
VBFrame
CMG
VBFrame
DPB
f
VBFrame
VBA
CMG
CMG
dir
DPB
DPB
Sheet5
Sheet5
Sheet7
Sheet7
Sheet8
Sheet8
[Decompiled VBA]
Malicious
Sheet11
Sheet11
Sheet13
Sheet13
Sheet15
Sheet15
Sheet17
Sheet17
Sheet19
Sheet19
Sheet24
Sheet24
Sheet27
Sheet27
Sheet28
Sheet28
__SRP_0
__SRP_1
__SRP_2
__SRP_3
__SRP_4
__SRP_5
__SRP_6
__SRP_7
__SRP_8
__SRP_9
__SRP_a
__SRP_b
__SRP_c
__SRP_d
__SRP_e
__SRP_f
UIModule
UIModule
__SRP_10
__SRP_11
__SRP_12
__SRP_13
__SRP_14
__SRP_15
__SRP_16
__SRP_17
__SRP_18
__SRP_19
__SRP_1a
__SRP_1b
__SRP_1c
__SRP_1d
__SRP_1e
__SRP_1f
__SRP_20
__SRP_21
__SRP_22
__SRP_23
__SRP_24
__SRP_25
__SRP_26
__SRP_27
__SRP_28
__SRP_29
__SRP_2a
__SRP_2b
__SRP_2c
__SRP_2d
__SRP_2e
__SRP_2f
__SRP_30
__SRP_31
__SRP_32
__SRP_33
__SRP_34
__SRP_35
__SRP_36
__SRP_37
__SRP_38
__SRP_39
__SRP_3a
__SRP_3b
__SRP_3c
__SRP_3d
__SRP_3e
__SRP_3f
__SRP_40
__SRP_41
__SRP_42
__SRP_43
__SRP_44
__SRP_45
__SRP_46
__SRP_47
__SRP_48
__SRP_49
__SRP_4a
__SRP_4b
__SRP_4c
__SRP_4d
__SRP_4e
__SRP_4f
__SRP_50
__SRP_51
__SRP_52
__SRP_53
__SRP_54
__SRP_55
SelfCheck
SelfCheck
ProgressForm
ProgressForm
SheetManager
SheetManager
ThisWorkbook
ThisWorkbook
_VBA_PROJECT
[Decompiled VBA]
Malicious
ProgressForm
f
o
VBFrame
i02
f
o
CompObj
metadata.xml
printerSettings
printerSettings1.bin
printerSettings2.bin
printerSettings27.bin
printerSettings4.bin
printerSettings9.bin
printerSettings12.bin
printerSettings19.bin
printerSettings23.bin
printerSettings24.bin
ctrlProps
ctrlProp1.xml
tables
calcChain.xml
customUI
customUI14.xml
Characteristics
vbaDNA - VBA Stomping & Purging Stategy detection
|
Module Name0 | ||
|---|---|---|
| GC | VBA Macro |
|
| CMG | VBA Macro |
|
| DPB | VBA Macro |
|
| Main | Blacklist VBA VBA Macro |
|
| Sheet5 | VBA Macro |
|
| Sheet7 | VBA Macro |
|
| Sheet8 | VBA Macro |
|
| License | Blacklist VBA VBA Macro |
|
| Sheet11 | VBA Macro |
|
| Sheet13 | VBA Macro |
|
| Sheet15 | VBA Macro |
|
| Sheet17 | VBA Macro |
|
| Sheet19 | VBA Macro |
|
| Sheet24 | VBA Macro |
|
| Sheet27 | VBA Macro |
|
| Sheet28 | VBA Macro |
|
| UIModule | VBA Macro |
|
| SelfCheck | VBA Macro |
|
| ProgressForm | VBA Macro |
|
| SheetManager | VBA Macro |
|
| ThisWorkbook | VBA Macro |
|
| LicenseManager | Blacklist VBA VBA Macro |
|
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.