Behavioral task
behavioral1
Sample
328929f0fbfa8c28e234741138e2e48a8ab5992d36e5eaaf62017abc57f47b11.doc
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
328929f0fbfa8c28e234741138e2e48a8ab5992d36e5eaaf62017abc57f47b11.doc
Resource
win10v2004-20220901-en
General
-
Target
328929f0fbfa8c28e234741138e2e48a8ab5992d36e5eaaf62017abc57f47b11
-
Size
41KB
-
MD5
0dd754a987d5f20624e55cb4ec1afeae
-
SHA1
97fdef60c6c3d45d404a74118c5d4ec04b4da639
-
SHA256
328929f0fbfa8c28e234741138e2e48a8ab5992d36e5eaaf62017abc57f47b11
-
SHA512
b59a337eaf3e73d334af5d2a683d6f8bac199f201c471b73c2d2c9bbdca6782b267b1dbf6f68be594fa02c8cfa97341a49ed0c780ecd74486b9b76d1e5ca724d
-
SSDEEP
384:0ASdHOp2FHGldhgzjrRG8lG1FilZ0jHdNTDUVDhQtt0:0r2oMDgzj9RITEIbHUDQM
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule sample office_macro_on_action -
Processes:
resource sample
Files
-
328929f0fbfa8c28e234741138e2e48a8ab5992d36e5eaaf62017abc57f47b11.doc windows office2003
ThisDocument