Static task
static1
Behavioral task
behavioral1
Sample
PO_371_50_37.xls
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
PO_371_50_37.xls
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
General
-
Target
PO_371_50_37.xls
-
Size
396KB
-
MD5
dd94071fbb3459fb33069767de531441
-
SHA1
5203fa48ba79e3626bcec7ecf3c1838c484760ef
-
SHA256
d7a4a7c4bced1b93c3bf1252ef98ccfd1129452a675633349f5f98d3c968df37
-
SHA512
d96e8fb052ffadee0961ff6fca2649066a81a02a3a4dee763e89d98b77cbd11faf15fa8a83b3c72e68d02284ee7dcd4a93f675a3f1da87a89d4c5f6a89fd64d8
Score
8/10
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule sample office_macro_on_action -
Processes:
resource yara_rule sample office_macros
Files
-
PO_371_50_37.xls.xls windows office2003
ThisWorkbook
Sheet1
yGGsvaB
Sheet2