Behavioral task
behavioral1
Sample
Notice_68892.doc
Resource
win7-20230220-en
windows7-x64
12 signatures
150 seconds
General
-
Target
Notice_68892.zip
-
Size
748KB
-
MD5
4b2741d05c72988c92292a9be27a60bb
-
SHA1
2317671840296d7c2479fbbafdfef03e20304239
-
SHA256
8a0120a01f14c5e4a0232a731e5392efdffb92cca731bf1554a49b7c469c8058
-
SHA512
ec07420500de60821f2401c89890e98a573e0006285d02ec4eb20940f2816ff4251824236e3246edbd9939a7237a4b43b573f825e582e25a12db9ac20fa7c7df
-
SSDEEP
6144:+wZnDlMy6O3qKmCRUe1B5uLqcHfVDNUV3nJGM+BTl:FtDlb6IqXCRUe1BTcH8VIM+Vl
Score
8/10
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule static1/unpack001/Notice_68892.doc office_macro_on_action -
Processes:
resource static1/unpack001/Notice_68892.doc
Files
-
Notice_68892.zip.zip
-
Notice_68892.doc.doc windows office2003
ThisDocument
Module1