Malicious
General
Structural Analysis
Config.0
Yara Rules13
Sync
Community
Infection Chain
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | bbd5481099024f5c9710469774fef312
|
| Sha1 | 49538796b95de92d3988618e1e5b4f38fe3b4301
|
| Sha256 | fca1e884ea4a9ef358c002af69cccfedcc8875098aea25db456b1ab56b411942
|
| Sha384 | d3f976fecb970f39521a2ea074c5e9f14b1e682002b3ead8efdcd000f1befc537aaf0ce8473940410d4db29956cef320
|
| Sha512 | 4cc6c58c2caacd3fad4ba4f2d22c3514ec9cbd09c559982c3bec469f48625e54febadf1bdd5d049c2192e910064401dc73f29b05bb3afc7f8985975323772ef7
|
| SSDeep | 24576:Dm4FWiervzXragjC+M4Owvu9nhOG2SgvFn8hc4:DpjW7rlMDCCnhOG2SWV4
|
| TLSH | 36153319EEE890123402AE84D9BFEF45A21C4F75B1229F5E75AC85EFC0944332ADDC79
|
File Structure
ab5152794ca45d670ae3f13de6be92fb686c27705d2df9ce0c00f76717bc61f3.zip
Zip Archive
StdOleLink
Exploit
CVE-2017-0199
CVE-2017-8570
CVE-2017-8759
CVE-2018-8174
Malicious
ab5152794ca45d670ae3f13de6be92fb686c27705d2df9ce0c00f76717bc61f3.xlsx
Archive Entry
Office Document
Corrupted
StdOleLink
Exploit
CVE-2017-0199
CVE-2017-8570
CVE-2017-8759
CVE-2018-8174
Malicious
[Repaired @0x000B2200]
Office Document
.
Malicious
Root Entry
Malicious
CompObj
Workbook
MBD010681DB
Package
Office Document
[Content_Types].xml
Xml
_rels
.rels
Xml
xl
_rels
workbook.xml.rels
Xml
workbook.xml
Xml
worksheets
sheet4.xml
Xml
sheet3.xml
Xml
sheet2.xml
Xml
_rels
sheet2.xml.rels
Xml
sheet3.xml.rels
Xml
sheet4.xml.rels
Xml
sheet5.xml.rels
Xml
sheet1.xml
Xml
sheet5.xml
Xml
drawings
drawing3.xml
Xml
vmlDrawing2.vml
drawing2.xml
Xml
drawing1.xml
Xml
vmlDrawing1.vml
theme
theme1.xml
Xml
styles.xml
Xml
sharedStrings.xml
Xml
printerSettings
printerSettings3.bin
printerSettings1.bin
printerSettings2.bin
ctrlProps
ctrlProp1.xml
Xml
docProps
core.xml
Xml
app.xml
Xml
CompObj
MBD010681DC
Workbook
Office Document
Corrupted
[Repaired @0x000445F0]
Office Document
[Content_Types].xml
Xml
_rels
.rels
Xml
drs
shapexml.xml
Xml
downrev.xml
Xml
MBD0018D4CE
Ole
ObjInfo
Contents
MBD0068D442
Package
Office Document
[Content_Types].xml
Xml
xl
_rels
workbook.xml.rels
Xml
workbook.xml
Xml
sharedStrings.xml
Xml
drawings
_rels
drawing1.xml.rels
Xml
drawing1.xml
Xml
worksheets
_rels
sheet1.xml.rels
Xml
sheet1.xml
Xml
theme
theme1.xml
Xml
styles.xml
Xml
media
image2.png
image2.png-preview.png
image1.png
image1.png-preview.png
printerSettings
printerSettings1.bin
docProps
core.xml
Xml
app.xml
Xml
CompObj
MBD007203CB
Workbook
_VBA_PROJECT_CUR
VBA
dir
_VBA_PROJECT
PROJECT
PROJECTwm
SummaryInformation
DocumentSummaryInformation
MBD00726B69
Package
Office Document
docProps
core.xml
Xml
SummaryInformation
DocumentSummaryInformation
MBD010681DD
Package
Office Document
[Content_Types].xml
Xml
xl
_rels
workbook.xml.rels
Xml
workbook.xml
Xml
styles.xml
Xml
worksheets
_rels
sheet1.xml.rels
Xml
sheet2.xml
Xml
sheet1.xml
Xml
theme
theme1.xml
Xml
sharedStrings.xml
Xml
printerSettings
printerSettings1.bin
docProps
core.xml
Xml
app.xml
Xml
MBD010681DE
Malicious
Ole
Exploit
CVE-2017-0199
CVE-2017-8570
CVE-2017-8759
CVE-2018-8174
StdOleLink
Malicious
_VBA_PROJECT_CUR
VBA
dir
Sheet3
_VBA_PROJECT
PROJECT
PROJECTwm
SummaryInformation
DocumentSummaryInformation
ab5152794ca45d670ae3f13de6be92fb686c27705d2df9ce0c00f76717bc61f3.zip (942.5 KB)
File Structure
ab5152794ca45d670ae3f13de6be92fb686c27705d2df9ce0c00f76717bc61f3.zip
Zip Archive
StdOleLink
Exploit
CVE-2017-0199
CVE-2017-8570
CVE-2017-8759
CVE-2018-8174
Malicious
ab5152794ca45d670ae3f13de6be92fb686c27705d2df9ce0c00f76717bc61f3.xlsx
Archive Entry
Office Document
Corrupted
StdOleLink
Exploit
CVE-2017-0199
CVE-2017-8570
CVE-2017-8759
CVE-2018-8174
Malicious
[Repaired @0x000B2200]
Office Document
.
Malicious
Root Entry
Malicious
CompObj
Workbook
MBD010681DB
Package
Office Document
[Content_Types].xml
Xml
_rels
.rels
Xml
xl
_rels
workbook.xml.rels
Xml
workbook.xml
Xml
worksheets
sheet4.xml
Xml
sheet3.xml
Xml
sheet2.xml
Xml
_rels
sheet2.xml.rels
Xml
sheet3.xml.rels
Xml
sheet4.xml.rels
Xml
sheet5.xml.rels
Xml
sheet1.xml
Xml
sheet5.xml
Xml
drawings
drawing3.xml
Xml
vmlDrawing2.vml
drawing2.xml
Xml
drawing1.xml
Xml
vmlDrawing1.vml
theme
theme1.xml
Xml
styles.xml
Xml
sharedStrings.xml
Xml
printerSettings
printerSettings3.bin
printerSettings1.bin
printerSettings2.bin
ctrlProps
ctrlProp1.xml
Xml
docProps
core.xml
Xml
app.xml
Xml
CompObj
MBD010681DC
Workbook
Office Document
Corrupted
[Repaired @0x000445F0]
Office Document
[Content_Types].xml
Xml
_rels
.rels
Xml
drs
shapexml.xml
Xml
downrev.xml
Xml
MBD0018D4CE
Ole
ObjInfo
Contents
MBD0068D442
Package
Office Document
[Content_Types].xml
Xml
xl
_rels
workbook.xml.rels
Xml
workbook.xml
Xml
sharedStrings.xml
Xml
drawings
_rels
drawing1.xml.rels
Xml
drawing1.xml
Xml
worksheets
_rels
sheet1.xml.rels
Xml
sheet1.xml
Xml
theme
theme1.xml
Xml
styles.xml
Xml
media
image2.png
image2.png-preview.png
image1.png
image1.png-preview.png
printerSettings
printerSettings1.bin
docProps
core.xml
Xml
app.xml
Xml
CompObj
MBD007203CB
Workbook
_VBA_PROJECT_CUR
VBA
dir
_VBA_PROJECT
PROJECT
PROJECTwm
SummaryInformation
DocumentSummaryInformation
MBD00726B69
Package
Office Document
docProps
core.xml
Xml
SummaryInformation
DocumentSummaryInformation
MBD010681DD
Package
Office Document
[Content_Types].xml
Xml
xl
_rels
workbook.xml.rels
Xml
workbook.xml
Xml
styles.xml
Xml
worksheets
_rels
sheet1.xml.rels
Xml
sheet2.xml
Xml
sheet1.xml
Xml
theme
theme1.xml
Xml
sharedStrings.xml
Xml
printerSettings
printerSettings1.bin
docProps
core.xml
Xml
app.xml
Xml
MBD010681DE
Malicious
Ole
Exploit
CVE-2017-0199
CVE-2017-8570
CVE-2017-8759
CVE-2018-8174
StdOleLink
Malicious
_VBA_PROJECT_CUR
VBA
dir
Sheet3
_VBA_PROJECT
PROJECT
PROJECTwm
SummaryInformation
DocumentSummaryInformation
Characteristics
No malware configuration were found at this point.
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.