Overview

overview

10

Static

static

10

b4bbc8bf42...76.doc

windows7_x64

1

b4bbc8bf42...76.doc

windows10-2004_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b4bbc8bf42cabc7c0db1b832e032258ebf370defc20cbd8c06bc6b1d6ad17c76

  • Size

    394KB

  • MD5

    d32beffc12bd5ef368d89e2038e7427f

  • SHA1

    e5063f432beeb94a8de0ae65868bdf80fbf97517

  • SHA256

    b4bbc8bf42cabc7c0db1b832e032258ebf370defc20cbd8c06bc6b1d6ad17c76

  • SHA512

    ad3693f2f7dfe9480648af0f84c01fd3682a4a9dc3e0bcfadae6a464b6babd84e0bce6d0689756ea61b4d62ca454dbe67b9797049f45fe92a8bc71d1435b6a6d

  • SSDEEP

    3072:k+VvOBi8IouW2N8tuT4NQZOudSDSzaSRxT928Vhwow9twyHlAaIA3GcSLTVT/93h:BJoimkNzw60pwIR

Score
10/10
macroostap

Malware Config

Signatures

  • Ostap JavaScript Downloader 1 IoCs

    Ostap is a JavaScript downloader that's been active since 2016. It's used to deliver several families, inluding TrickBot

  • Ostap family
    ostap
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • b4bbc8bf42cabc7c0db1b832e032258ebf370defc20cbd8c06bc6b1d6ad17c76
    .doc .js windows office2003

    Sheet1

    ThisWorkbook

    UserForm1