Overview

overview

10

Static

static

8

Rech.doc

windows7-x64

10

Rech.doc

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    09389a18b5464aa25c4029351e5fbf22e4dfff309cc08cc6f4b6d5d08a341bc2.zip

  • Size

    149KB

  • MD5

    4bda4ec7af778bd899819c37e8d6ac8b

  • SHA1

    5b0338583b37b807d7ba221a09040fc27b3c4e43

  • SHA256

    67b2197087dc4b288cb35dc81137985cb4abf7f0ef60445427381fdc3d6789eb

  • SHA512

    2e4e0cfd099947d2def3780d2db4c7d8ef126e6eda75ee1f4326565d3d4440ed47cbe2400d7733c144741cb6ad7914652dc43ff987698ea7165b3bd559476418

  • SSDEEP

    3072:faXoIv26DUMZPuLsY0+VAsjGimdQNnpEdrEYClAmucvpa1A01D6MiKQySyl:pI+6DfkLsz+VTQImEYgzpa1h6M7RSy

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • 09389a18b5464aa25c4029351e5fbf22e4dfff309cc08cc6f4b6d5d08a341bc2.zip
    .zip

    Password: infected

  • 09389a18b5464aa25c4029351e5fbf22e4dfff309cc08cc6f4b6d5d08a341bc2.zip
    .zip

    Password: infected

  • Rech.doc
    .doc windows office2003

    ThisDocument

    Module1