Malicious
Malicious

fd361fcdd5d0cebc208dd4d81b88e846

MS Excel Document
|
MD5: fd361fcdd5d0cebc208dd4d81b88e846
|
Size: 439.75 KB
|
application/vnd.ms-excel

Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
fd361fcdd5d0cebc208dd4d81b88e846
Sha1
f01ae5cd4d300669f1e1b353939586f48a06bc81
Sha256
a28a94d233dc2abee2820193addd10e93f1da99897765273026fdf4e6a47be2a
Sha384
59308b3cd8f07221ff25991de4aa33a3660a69fb8f46f5199f3daef7c3e2a109f514645c8aa333dd2d4df38833c881cc
Sha512
7a568a0593464345bd0ce5c46e8c2947683eb05620691f325176036878af86fcec6fef13b72b423acd5ba62d77c3e09581f1fd3bb59333cdeb8f66794a6fc952
SSDeep
12288:CFd69IAtYdzTeIFUqhod5iSa4MrcvYr4FMI77p/:v9IkYdzqIFUMofa34THp/
TLSH
E29423AEC78A69DFFA670CB949271DBC2D851422140EC56ADA03057151E2DF33BE1F3A
File Structure
fd361fcdd5d0cebc208dd4d81b88e846
Malicious
[Content_Types].xml
_rels
.rels
xl
workbook.xml
_rels
workbook.xml.rels
worksheets
sheet1.xml
_rels
sheet1.xml.rels
theme
theme1.xml
styles.xml
sharedStrings.xml
drawings
drawing1.xml
vmlDrawing1.vml
_rels
vmlDrawing1.vml.rels
embeddings
oleObject1.bin
Root Entry
Ole10Native
media
image1.emf
vbaProject.bin
Root Entry
PROJECT
PROJECTwm
VBA
dir
Module1

Module1

[Stored VBA]
Malicious
[Stored VBA].deobfuscated.vbs
[Command #0]
[PCode]
Module2

Module2

[Stored VBA]
Malicious
[PCode]
__SRP_0
__SRP_1
__SRP_2
__SRP_3
__SRP_4
__SRP_5
_VBA_PROJECT
printerSettings
printerSettings1.bin
docProps
core.xml
app.xml
fd361fcdd5d0cebc208dd4d81b88e846 (439.75 KB)
File Structure
fd361fcdd5d0cebc208dd4d81b88e846
Malicious
[Content_Types].xml
_rels
.rels
xl
workbook.xml
_rels
workbook.xml.rels
worksheets
sheet1.xml
_rels
sheet1.xml.rels
theme
theme1.xml
styles.xml
sharedStrings.xml
drawings
drawing1.xml
vmlDrawing1.vml
_rels
vmlDrawing1.vml.rels
embeddings
oleObject1.bin
Root Entry
Ole10Native
media
image1.emf
vbaProject.bin
Root Entry
PROJECT
PROJECTwm
VBA
dir
Module1

Module1

[Stored VBA]
Malicious
[Stored VBA].deobfuscated.vbs
[Command #0]
[PCode]
Module2

Module2

[Stored VBA]
Malicious
[PCode]
__SRP_0
__SRP_1
__SRP_2
__SRP_3
__SRP_4
__SRP_5
_VBA_PROJECT
printerSettings
printerSettings1.bin
docProps
core.xml
app.xml
Characteristics

vbaDNA - VBA Stomping & Purging Stategy detection

Module Name
Module1
Blacklist VBA
VBA Macro
Module2
VBA Macro
No malware configuration were found at this point.
You must be signed in to post a comment.
An error has occurred. This application may no longer respond until reloaded. Reload 🗙