| Verdict |
Suspicious |
| SHA-256 | cf0f7d178b74a724d306e95469e7e3a8a8974c69a659a365ab8f1c129a69ec10 |
| MD5 | dbad290342a0f6cd2554a4d7b06ff400 |
| File size | 24268 bytes |
| MIME | application/vnd.openxmlformats-officedocument.spreadsheetml.sheet |
| File info | Microsoft Excel 2007+ |
| Matching maldoc templates |
|
| Suspicious findings in the VBA |
New-Object
System
exec
Base64 Strings
CreateObject
Net.WebClient
Xor
DownloadFile
Hex Strings
Chr
Start-Process
AutoExec
|
| Malicious methods |
|
| URLs |
https://www.linkedin.com/in/laurasperandio4890/_________________,https://www.linkedin.com/in/laurasilvae4890/,https://bitbucket.org/seveca-emilia/onemoreslave/downloads/sz.exe',$TempDir+'test.exe' |
| First reported |
18/04/2021 12:42:58 |
| Scanning time |
3.24 sec |
| Consult others |
Triage VirusTotal Hybrid Analysis |
Blind DOCtor