Behavioral task
behavioral1
Sample
FILE_1603.doc
Resource
win10v2004-20230220-en
windows10-2004-x64
12 signatures
150 seconds
General
-
Target
FILE_1603.zip
-
Size
756KB
-
MD5
f4bedc96fce8c1f1275098f1c6e312e7
-
SHA1
3bae94859ca10929ae65bb4ec3ef8d30ef0ab5ad
-
SHA256
c7c0a4c2ca13150807eb8110af4ff6229f6cd973d59f826047856bddefcfb88d
-
SHA512
d20bef61b08be91ac5d488b2c780516761bfa244f5a61e04cc9e0d206d3afadbc6d6a9f60cc2adccc71aed63254890469f2368bf8de1a327b19d319f1ebd7c51
-
SSDEEP
6144:EQpjt+nAXz13VqEXUDJc/5Rur4GlzRH2+:Plt+nAFIm5RolzRHn
Score
8/10
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule static1/unpack001/FILE_1603.doc office_macro_on_action -
Processes:
resource static1/unpack001/FILE_1603.doc
Files
-
FILE_1603.zip.zip
-
FILE_1603.doc.doc windows office2003
ThisDocument
Module1