Static task
static1
Behavioral task
behavioral1
Sample
HealthcareDirective_159.doc
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
HealthcareDirective_159.doc
Resource
win10v2004-20220414-en
General
-
Target
6cf9c86944a53b2168d7206a899a5f8d1c263f03d95d3eb046faa2aa15220963
-
Size
120KB
-
MD5
6e1eb0ea7690bd5cc0b9b7fc2dba3097
-
SHA1
a4cff8091f206ba1dd2cd7bc991719a4487c755d
-
SHA256
6cf9c86944a53b2168d7206a899a5f8d1c263f03d95d3eb046faa2aa15220963
-
SHA512
0f2bbf3743fb6e0f5b4bfc13bafb0da5ba4f504d92a280f84f58de978e6a691202312eefcebd8951d988b08a9af35ba0e23fff9b2d9bb4e377b84e34d5462d7b
-
SSDEEP
1536:fuC7i73KVL+yenpJel1YQv+HVHJule2eAd2NMbE3Wz+s/sQVAiEfagDQTFHHpiA5:r7GyEJ+yQwC82eQ+WzG9v4phU8BqRLsv
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule static1/unpack001/HealthcareDirective_159.doc office_macro_on_action
Files
-
6cf9c86944a53b2168d7206a899a5f8d1c263f03d95d3eb046faa2aa15220963.zip
-
HealthcareDirective_159.doc