Static task
static1
Behavioral task
behavioral1
Sample
SARS Documents.doc
Resource
win7v20210408
windows7_x64
0 signatures
0 seconds
General
-
Target
SARS Documents.doc
-
Size
36KB
-
MD5
ea2c22c96421b40396d9d9a5ef2e4dc4
-
SHA1
77a04b21f8e8c57b7f24c6681fcac30ca09fd42b
-
SHA256
f8d44d7880640da690ec310d1d562a37f0f63e45503d8eb8710f40dd062cf401
-
SHA512
70068a330cbb1e368f941625649e0a5f0fc8f6da9def43a440ca9d19fece1f74a51ff03f7e430278f1cdf9c2c762f271f985b15cf96a40438d9a9bcc97b5814a
Score
8/10
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule sample office_macro_on_action -
Processes:
resource yara_rule sample office_xlm_macros sample office_macros
Files
-
SARS Documents.doc.doc .vbs windows office2003
ThisDocument
NewMacros