Overview

overview

10

Static

static

8

message 41658208.doc

windows7-x64

10

message 41658208.doc

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Spams-Mail.msg

  • Size

    1.2MB

  • MD5

    898a566e4885869987a1555ed83ba8fe

  • SHA1

    736e1fc5cc8d0504c06423a488ec07c1178c7382

  • SHA256

    805930b69318efe7cd4b2535db9998654de6b93934525ab21cab79210d770134

  • SHA512

    ed98dc3f36d91c83ef67bdd6e6e32ebc262a0b532abfe4d5441caa496d020955b505ba8f18a413abe6c4028ad3707e50117225ab5162e330ac827583ca5bad64

  • SSDEEP

    12288:MyOtszlc8EQdxolbLLRelbLLRjeRKwqswL3hwiPyCXiSS0CveiSS0Cv3AiiLuH9D:tzJPfoMloKjswqCb9S05S02iLumG

Score
8/10
macro

Malware Config

Signatures

  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • Spams-Mail.msg
    .msg

    • http://colomboagroindustria.com.br

    • http://contrifiad.ec

    • http://dominos.ae

    • http://ec.europa.eu

    • http://garraimports.com.br

    • http://goeg.at

    • http://scj.vn

    • http://triler.com

    • http://umsadu.ro

  • Data.zip
    .zip
  • SCAN.zip
    .zip
  • Scan.zip
    .zip
  • bijlage.zip
    .zip
  • doc.zip
    .zip
  • lijst-31127.zip
    .zip
  • message 41658208.zip
    .zip

    Password: 919

  • message 41658208.doc
    .doc windows office2003

    Kh0pzi2jvi6r2su

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5

    D7w9m5cll8x

    Jsw5j1t_5nbxs