Behavioral task
behavioral1
Sample
5ίί.xls
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
5ίί.xls
Resource
win10v2004-20221111-en
Behavioral task
behavioral3
Sample
5ί̨.doc
Resource
win7-20221111-en
Behavioral task
behavioral4
Sample
5ί̨.doc
Resource
win10v2004-20221111-en
General
-
Target
c4b719a9c4be245f031da0e86defe002c8891828cbfe63ed15d3dc75655832b8
-
Size
31KB
-
MD5
3af386ef8ca957ea74933493072f6dde
-
SHA1
3b30ec032621c995da0f185abd90c201bc790513
-
SHA256
c4b719a9c4be245f031da0e86defe002c8891828cbfe63ed15d3dc75655832b8
-
SHA512
bcb003aa9ee22190cc647601cc66c89c26b097748128030f4c5fffa0a6d38783110926e518a9d1428b261b12ac242dab5efe42dee67e6c64960584fb6d634693
-
SSDEEP
768:SzbPVRgFh6z8vseUfwOYugbddIdoyThutU2u:W/gFhK8seEw7h/I+yThL
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule static1/unpack001/5ίί.xls office_macro_on_action -
Processes:
resource yara_rule static1/unpack001/5ίί.xls office_xlm_macros
Files
-
c4b719a9c4be245f031da0e86defe002c8891828cbfe63ed15d3dc75655832b8.zip
-
5ίί.xls.xls windows office2003
-
5ί̨.doc.doc windows office2003