Overview

overview

10

Static

static

10

fd8fb3e11d...49.doc

windows7_x64

1

fd8fb3e11d...49.doc

windows10-2004_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fd8fb3e11d99a6d6859132438636b7ee4b065c4d122fed6cf9ef09a8efb31949

  • Size

    376KB

  • MD5

    8bef6462eaf14f26e7bc698c0324f8c3

  • SHA1

    4deefb742406355b63fe645378f4b76cca5c2af4

  • SHA256

    fd8fb3e11d99a6d6859132438636b7ee4b065c4d122fed6cf9ef09a8efb31949

  • SHA512

    d60801696e761690accc0588b4a9118f8ab645ece3ecbb0394e4bf4e8c6d1233033f004b408b09033dd27e36545ec9f3e76a938f558d9ab876255e46a4aec85e

  • SSDEEP

    6144:ou2WSF1wZclp1+2wr7m8SiXyQ+SyGJCC5VBqAB6M9AB6M/AoCtX1UWAmGoKb7SK:gWZclp1+2wr7m8SiXyQ+SXd5VBqAB6M

Score
10/10
macroostap

Malware Config

Signatures

  • Ostap JavaScript Downloader 1 IoCs

    Ostap is a JavaScript downloader that's been active since 2016. It's used to deliver several families, inluding TrickBot

  • Ostap family
    ostap
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • fd8fb3e11d99a6d6859132438636b7ee4b065c4d122fed6cf9ef09a8efb31949
    .doc .js windows office2003

    Sheet1

    ThisWorkbook

    UserForm1