Verdict |
Suspicious |
SHA-256 | cf0f7d178b74a724d306e95469e7e3a8a8974c69a659a365ab8f1c129a69ec10 |
MD5 | dbad290342a0f6cd2554a4d7b06ff400 |
File size | 24268 bytes |
MIME | application/vnd.openxmlformats-officedocument.spreadsheetml.sheet |
File info | Microsoft Excel 2007+ |
Matching maldoc templates |
|
Suspicious findings in the VBA |
New-Object
System
exec
Base64 Strings
CreateObject
Net.WebClient
Xor
DownloadFile
Hex Strings
Chr
Start-Process
AutoExec
|
Malicious methods |
|
URLs |
https://www.linkedin.com/in/laurasperandio4890/_________________,https://www.linkedin.com/in/laurasilvae4890/,https://bitbucket.org/seveca-emilia/onemoreslave/downloads/sz.exe',$TempDir+'test.exe' |
First reported |
18/04/2021 12:42:58 |
Scanning time |
3.24 sec |
Consult others |
Triage VirusTotal Hybrid Analysis |