Behavioral task
behavioral1
Sample
BOQ & DWG & Specs.pps
Resource
win7-20220715-en
windows7-x64
13 signatures
150 seconds
Behavioral task
behavioral2
Sample
BOQ & DWG & Specs.pps
Resource
win10v2004-20220721-en
windows10-2004-x64
13 signatures
150 seconds
General
-
Target
BOQ & DWG & Specs.ppa
-
Size
88KB
-
MD5
07f043483f0ace3a78eaf975472c5a0a
-
SHA1
3cded094a69940961675a7b9a72a11e8a74d99d3
-
SHA256
2a4506ceb5bc265840e2aeeeb6577aa97db5534672ad420efc22b62fe31e6d82
-
SHA512
60471fd4be21a7a3d53379f4af75c6bdd0a27f23a95d2b617175fe5d56ff84c00555854c6d42211dbd3589244736eb0986dafb8858308b4cf9f1e04ec80d7183
-
SSDEEP
768:O/E+Q6xC8yYSjEb6mF8yEv7MHElZONt3Ucjo:MEHWC1FgnF8yEvtSDc
Score
8/10
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule sample office_macro_on_action
Files
-
BOQ & DWG & Specs.ppa.pps .ppa windows office2003