Static task
static1
Behavioral task
behavioral1
Sample
e-vote_form 490.57.607 .doc
Resource
win7v200430
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
e-vote_form 490.57.607 .doc
Resource
win10v200430
windows10_x64
0 signatures
0 seconds
General
-
Target
e-vote_form 490.57.607 .doc
-
Size
159KB
-
MD5
2724b111225ce89b723ab445ed056c58
-
SHA1
d9b04721b2f7b832abc3fb78f3aa969bf1401ef8
-
SHA256
97911a67667e73c0c1628e2b441dd6f9ced9f142e87665e9c2f23d56c87b919c
-
SHA512
3b95691fd43a48f504d37b36e3a7c31dfddf09c94f3b45f19e0f7d5d1b53c0442c7a537167950fe741cf0a25cda2b00e9c907da2b1b32caacfcc528c373303b9
Score
8/10
Malware Config
Signatures
-
Processes:
resource yara_rule sample office_xlm_macros -
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule sample office_macro_on_action
Files
-
e-vote_form 490.57.607 .doc.doc windows office2003