Static task
static1
Behavioral task
behavioral1
Sample
KMbZKdhI.doc
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
KMbZKdhI.doc
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
General
-
Target
KMbZKdhI.doc
-
Size
383KB
-
MD5
9bcd01e5e8544e3bd39c0594f5407136
-
SHA1
4b927038a6c86c14a2bbd0019a7b251b9097339f
-
SHA256
36690bf953192eb205f486a364f788fd75aafa0e119bacb039f2503d4e81d0fa
-
SHA512
65fa3b3969f05e3d5b95492a3e701f91f741561732679cbe6352eceb8fca759d5cb4c3b087f05afeb0c3bf68825cfb5c259c4e6b577eae059780748bbb85eff8
Score
8/10
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule sample office_macro_on_action -
Processes:
resource yara_rule sample office_xlm_macros
Files
-
KMbZKdhI.doc.doc windows office2003
ThisDocument
Module10
Module12
Module11
Module1