Static task
static1
Behavioral task
behavioral1
Sample
a620c6c8eba080f448a230549de1e4653c7c9d661f7774b630e6d300edadf151.pps
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
a620c6c8eba080f448a230549de1e4653c7c9d661f7774b630e6d300edadf151.pps
Resource
win10v2004-20220414-en
General
-
Target
a620c6c8eba080f448a230549de1e4653c7c9d661f7774b630e6d300edadf151
-
Size
65KB
-
MD5
b3955e1cda42b669f89dd5f2ece4534e
-
SHA1
3e369400e83d66ebc6e704c6e2b7892f5907473f
-
SHA256
a620c6c8eba080f448a230549de1e4653c7c9d661f7774b630e6d300edadf151
-
SHA512
9b82c26b9dd9d1f617a38922cfa058ee40d491b4b46fefd60238934e576859a54ae3ca534763649b25b1caea76c69f2800a21a3ade75420acff87608763d97ad
-
SSDEEP
384:kgrZF7yhaMsayy6Bs+AiV9Qtnj8zMmchSFo39D:+hQBlAiV5zFcgo
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule sample office_macro_on_action -
Processes:
resource sample
Files
-
a620c6c8eba080f448a230549de1e4653c7c9d661f7774b630e6d300edadf151.pps windows office2003
Calculator
Lolipop
Ping