Behavioral task
behavioral1
Sample
20230308_202888_0035.doc
Resource
win7-20230220-en
12 signatures
150 seconds
General
-
Target
Customs.gov_20230308_70899_0078.zip
-
Size
696KB
-
MD5
f5ef76766ccb460f3d062d6bd467e302
-
SHA1
f5d7b041866823b80e3f8930d82adc3f47cac132
-
SHA256
68716e92ae9002dc5762d2711d16dd6052f302d844b4cfa6130c98af6ccddbe4
-
SHA512
8bdb8eaee25147ab2c3b5f59b40029cc16ba4edf7bd470e0a4b1eb65e44244da859737a98c81137950878e918dff0e8e94280c8ab84c64bf777fecd7622d44cd
-
SSDEEP
6144:aJNbwmfcuHom8Hz2f//ywiWT8xVTI5wqL:GbPHom8TYyCT8x5I5wY
Score
8/10
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
resource yara_rule static1/unpack001/20230308_202888_0035.doc office_macro_on_action -
resource static1/unpack001/20230308_202888_0035.doc
Files
-
Customs.gov_20230308_70899_0078.zip.zip
-
20230308_202888_0035.doc.doc windows office2003
ThisDocument
Module1