Overview

overview

10

Static

static

10

Purchase O...r.docx

windows7-x64

10

Purchase O...r.docx

windows10-2004-x64

1

Purchase O...a.xlsx

windows7-x64

1

Purchase O...a.xlsx

windows10-2004-x64

1

Resubmissions

08/09/2022, 18:38

220908-w94h3acdcq 10

08/09/2022, 18:23

220908-w1f2eafca8 10

Sharing

Copy URL Twitter E-mail

General

  • Target

    smoke.zip

  • Size

    51KB

  • MD5

    55722ee0221e664689a9be3799e7cac5

  • SHA1

    ce86be24190df5006ba2286e461dd3c9b89d7d10

  • SHA256

    dccd3ede8ca8344dff24622be88faca2a96f40d880dc92eb22af2b98627bd073

  • SHA512

    5b228d58c342ee57f54a3e936c208dccb36e36372736c6dca22a1c83b1e588087fc304719d37dbb194a1ee746d5801563ecac6249b2a9e0c049b1b6494a3fb47

  • SSDEEP

    1536:dbD7J0m6fbSl92y43t4xCRyG2rSsSgYCDDHlfyWkOIA:dbDwfbSXlPxFG2IC3HEOb

Score
10/10
websettings

Malware Config

Extracted

Rule
Microsoft Office WebSettings Relationship
C2

http://1806450056/..-.....----------------------.......---------------------------..---.....-----/137.dothtml

Signatures

Files

  • smoke.zip
    .zip
  • Purchase Order FG-20220906 By Air.docx
    .docx office2007
  • Purchase Order FG-20220906 By Sea.xlsx
    .doc .xlsx windows office2003

    Password: VelvetSweatshop

  • decrypted
    .xlsx office2007