Static task
static1
Behavioral task
behavioral1
Sample
534867_DOCTOURElC.msi
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
534867_DOCTOURElC.msi
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
General
-
Target
F0RMULAR10_5403797_IWP6.zip.zip
-
Size
3.6MB
-
MD5
b82073bb61200cb0dc358d664abf89bd
-
SHA1
ef31407463199705a282c11b579efc1bcb4c7ae0
-
SHA256
ffe38b484df3b5fc6fe199474e9426773d2d424637e3714f2c6f64518e6aa4db
-
SHA512
0f229378d2cb850f9f786809a946e7880c1ecef00fc6d28ccdedffb829ac599a4dea03b84ef85966a18245f213cb96457cc9d17f8ace4483af264c19e08724da
Score
6/10
Malware Config
Signatures
-
JavaScript code in executable 1 IoCs
Processes:
resource yara_rule static1/unpack002/534867_DOCTOURElC.msi js
Files
-
F0RMULAR10_5403797_IWP6.zip.zip.zip
Password: infected
-
F0RMULAR10_5403797_IWP6.zip.zip
-
534867_DOCTOURElC.msi.msi
-
icone_5403797.gif