Malicious
Malicious

f591beade507a4cb615b9ba64c560751

MS Excel Document
|
MD5: f591beade507a4cb615b9ba64c560751
|
Size: 448.44 KB
|
application/vnd.ms-excel

Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
f591beade507a4cb615b9ba64c560751
Sha1
2e473c74bd5543a9f105d7f2046d12a2d425d981
Sha256
c1411c5ec14996d8bb146c2fa2a610dfe170ef2aac87814f499b3497529f0f3d
Sha384
9de7a68ef341ef6254179e274d367e13f6fd475117ccac886d0da31496c8efc389b4fe5fbf49d0d8f8d609a4ea9eed60
Sha512
08d650fb319b314f2f07258b5c0ba22dffb4ee60a4f3627a870565bc6d9aeac9467993272fb25193a07e14cbe8a8c902e6a55d3b35c5bb96d321b10d2d347577
SSDeep
6144:6TwEsynz547WDq1xjo3kxZUY0d4Lg0AiiXYFkvq5pCM6LYs/aO4uYyDIP830+I01:6Tw6VuW8xZUyg0j8DaOFY2c830kzlJ5
TLSH
3D94238809CC1CDDC0B228BD65ECB19B1BED61DD82D4C73F85D9F94042055EEBA4ADAE
File Structure
f591beade507a4cb615b9ba64c560751
Malicious
[Content_Types].xml
_rels
.rels
xl
workbook.xml
_rels
workbook.xml.rels
worksheets
sheet1.xml
_rels
sheet1.xml.rels
theme
theme1.xml
styles.xml
sharedStrings.xml
drawings
drawing1.xml
vmlDrawing1.vml
_rels
vmlDrawing1.vml.rels
embeddings
oleObject1.bin
Root Entry
Ole10Native
media
image1.emf
vbaProject.bin
Root Entry
PROJECT
PROJECTwm
VBA
dir
Module1

Module1

[Stored VBA]
Malicious
[Stored VBA].deobfuscated.vbs
[Command #0]
[PCode]
Module2

Module2

[Stored VBA]
Malicious
[PCode]
__SRP_0
__SRP_1
__SRP_2
__SRP_3
__SRP_4
__SRP_5
_VBA_PROJECT
printerSettings
printerSettings1.bin
docProps
core.xml
app.xml
f591beade507a4cb615b9ba64c560751 (448.44 KB)
File Structure
f591beade507a4cb615b9ba64c560751
Malicious
[Content_Types].xml
_rels
.rels
xl
workbook.xml
_rels
workbook.xml.rels
worksheets
sheet1.xml
_rels
sheet1.xml.rels
theme
theme1.xml
styles.xml
sharedStrings.xml
drawings
drawing1.xml
vmlDrawing1.vml
_rels
vmlDrawing1.vml.rels
embeddings
oleObject1.bin
Root Entry
Ole10Native
media
image1.emf
vbaProject.bin
Root Entry
PROJECT
PROJECTwm
VBA
dir
Module1

Module1

[Stored VBA]
Malicious
[Stored VBA].deobfuscated.vbs
[Command #0]
[PCode]
Module2

Module2

[Stored VBA]
Malicious
[PCode]
__SRP_0
__SRP_1
__SRP_2
__SRP_3
__SRP_4
__SRP_5
_VBA_PROJECT
printerSettings
printerSettings1.bin
docProps
core.xml
app.xml
Characteristics

vbaDNA - VBA Stomping & Purging Stategy detection

Module Name
Module1
Blacklist VBA
VBA Macro
Module2
VBA Macro
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙