Behavioral task
behavioral1
Sample
4ӦƸԱҵɹһ.xls
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
4ӦƸԱҵɹһ.xls
Resource
win10v2004-20220812-en
General
-
Target
b9f83a0c5a486a759aa9879ad335a86a4f4e612f9fb61486e410a2e9999b4af3
-
Size
14KB
-
MD5
b63341ecaaa8e327038df9e4193feb35
-
SHA1
b3fcf0efcc2f5c86adf6eee52f9ae7a6fe2a4353
-
SHA256
b9f83a0c5a486a759aa9879ad335a86a4f4e612f9fb61486e410a2e9999b4af3
-
SHA512
06d47c5e7ae41d8b8421d7cc4860eb1dd44004001d99a52c8c3807f474c384060c2fa35f52381b3e84cf66ba315c761de37f04d12b981afe7c96853b0c0b7a5a
-
SSDEEP
192:feUH6YgA8D3BXH3hqvkP4flTTHZXkWDZisJKlpO+TwifHz85jSUdGVBtqW2rxMyn:GUHCAkP4dpBDYO+Ew45OUdZzgsovgn
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule static1/unpack001/4ӦƸԱҵɹһ.xls office_macro_on_action
Files
-
b9f83a0c5a486a759aa9879ad335a86a4f4e612f9fb61486e410a2e9999b4af3.zip
-
4ӦƸԱҵɹһ.xls.xls .vbs windows office2003