Behavioral task
behavioral1
Sample
Rech.doc
Resource
win7-20230220-en
windows7-x64
7 signatures
150 seconds
General
-
Target
Rech.zip
-
Size
658KB
-
MD5
bcb2124ab204306a2bf5a9648ec9df50
-
SHA1
1bfc6a543bc2691c456b19bbbb3038a8926dd9f3
-
SHA256
953d4204061b6047b1e877ac36eafa05ac2a1ed18d664e087b479b59ed65f75a
-
SHA512
0c1c2bd3edef379425fab59e44fcca58f148c4aa4e633f3a3efb8aa42559dafec6205069b3268c38b4bae9caf19547394007fa28c1e7420142fd38f4b55fb1cb
-
SSDEEP
3072:5IFb4Wmkqke+cEeqH9vH+i2s1Vj8JxuLVpMs75XLKZvP:5Oykqk6Lw+i2s1Vjkxuxp/QvP
Score
8/10
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule static1/unpack001/Rech.doc office_macro_on_action -
Processes:
resource static1/unpack001/Rech.doc
Files
-
Rech.zip.zip
-
Rech.doc.doc windows office2003
ThisDocument
Module1