Overview

overview

10

Static

static

8

TF80057265...58.doc

windows7-x64

10

TF80057265...58.doc

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    9463205225.zip

  • Size

    148KB

  • MD5

    4cbd0ae94038506b4f76b2ce66ce491f

  • SHA1

    fd9f13e20f1f9727a46ec9cb77c0480c4b9ea3b4

  • SHA256

    0e04f06a5fdfed48b418ce8ed80588ddbf0bbb6b97acc50405af08ecf5782a3e

  • SHA512

    6e383de0cd14f0133a5badf3eabad75e3fe089c53afc71930f4ce3a8e4c470181f46a6e313d9bef51e041b64907144ea1cfebe699b473f129e0bfb8441fa480d

  • SSDEEP

    3072:y+r1M9ocEDAuibJANgnX6to8LsCbn71F6/7oldgViXdj:y+Jcocd/Ko8L3bnhFU2dHXB

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • 9463205225.zip
    .zip

    Password: infected

  • 0d60fc2c753caa92b5daed972f12e3802611795f0abb7387cefaec4a0dd9978c
    .zip
  • TF800572658028083_202303081358.doc
    .doc windows office2003

    ThisDocument

    Module1