Static task
static1
Behavioral task
behavioral1
Sample
01798d2ac47e6411220221f2b608f2f5d122efa1439ff0d3c2dcbc5925ae639c.doc
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
01798d2ac47e6411220221f2b608f2f5d122efa1439ff0d3c2dcbc5925ae639c.doc
Resource
win10v2004-20220414-en
General
-
Target
01798d2ac47e6411220221f2b608f2f5d122efa1439ff0d3c2dcbc5925ae639c
-
Size
230KB
-
MD5
4b760e040b90ee17842dde9a176fb47b
-
SHA1
67357d6bd4265aed6413e82adfa56ae8d1de6c7f
-
SHA256
01798d2ac47e6411220221f2b608f2f5d122efa1439ff0d3c2dcbc5925ae639c
-
SHA512
bf8dba2edcf7616bf86252884e08c489d674611210df7becaba5bac55a8a1f967ac059f19864b435c0917f6f76d313cf3e963da5b1de918b766484ff07e572fe
-
SSDEEP
3072:aH9nBf4SuEjAhmAMOc7kkkko1rkGuF3tBInxGGq5QyXJm9YBmjD+KdRUsHVf2CeZ:aFVeEsjdXRC3jexGG6HYWof+KdR5U6
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule sample office_macro_on_action -
Processes:
resource sample
Files
-
01798d2ac47e6411220221f2b608f2f5d122efa1439ff0d3c2dcbc5925ae639c.doc windows office2003
SjJPQHzKnhUK
mkzruoFud
tYnNEBQf