emotet-doc-20210112[.]zip | Triage

Sharing

General

Target

emotet-doc-20210112.zip
Size

569KB
MD5

1caa075042dda587facf9e0e8c3ccae9
SHA1

012bf56776d547842805bca1c828f86f975af039
SHA256

c37a74c72063867bc55b49cf86d2456f171d43cd01c3f8ea0fcd47eeffe5c505
SHA512

e2fa49144449b216066bfab08c2e63857c8b1dcda7ea145ceed9244f808e1e161ec7eb28c70e6c384e5ffc859486b156d3731f618d0961bfa7b4b6752cb513b5

Score

8^/10

macro

Malware Config

Signatures

Suspicious Office macro 7 IoCs

Office document equipped with 4.0 macros.

Processes:

resource	yara_rule
static1/unpack001/E1-20210112_1516	office_xlm_macros
static1/unpack001/E1-20210112_1959	office_xlm_macros
static1/unpack001/E2-20210112_1456	office_xlm_macros
static1/unpack001/E2-20210112_1756	office_xlm_macros
static1/unpack001/E2-20210112_2219	office_xlm_macros
static1/unpack001/E3-20210112_1618	office_xlm_macros
static1/unpack001/E3-20210112_2343	office_xlm_macros

Files

emotet-doc-20210112.zip
.zip
E1-20210112_1516
.doc windows office2003

Y8ujn8dpm939r

Kzrbb_6silt

Ifkc0eowaborfjmzs
E1-20210112_1959
.doc windows office2003

U5eve4ouj5fv641

Ca9d05k_x0zoikinxg

Dltjb7zkb4f
E2-20210112_1456
.doc windows office2003

Ut2r21ym17z8

L95wkirc_zm

Wnoyuuu28ekk6591v
E2-20210112_1756
.doc windows office2003

Kyl0l3rqw280c6ssa

P0_myy5fnenf

Gx8fznt8p0b
E2-20210112_2219
.doc windows office2003

Rw_gu6fr25wcs

Rkhqpdwb_l8se

Qsfjcxgtaymuqu25a
E3-20210112_1618
.doc windows office2003

Tdtx7pf_tdkne

Gzomumnb5bv0

Xarh8p1wd3sb76
E3-20210112_2343
.doc windows office2003

V3rgu98p5qkz2a

Cjknsps2akfwgt7wg

Inpbpkjga5ybzawx