Overview

overview

10

Static

static

8

gescanntes...nt.doc

windows7-x64

10

Resubmissions

17-03-2023 10:17

230317-mbr8pshf9x 10

16-03-2023 13:49

230316-q42vdsba75 10

16-03-2023 13:38

230316-qxl6csdc9w 10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    MDE_File_Sample_cf9e4c7534e0116cae7f8714e3284061ce058ff6.zip

  • Size

    658KB

  • MD5

    64255eb2063a52f65970fdf1cb0c85df

  • SHA1

    00f06987ac2bf9a79138dbe0837d76afe63b5088

  • SHA256

    4e943075967fb249b56a16f3f7c9d647e98d6d85af2b162aa623ee7fc33dc331

  • SHA512

    85f718dda27ff9d89910aa9d2c19e695c9770e88e0f4144f9e2ab8022972767c788699d40a2f9b3f3142a3ca30f4beda2627e574ae4f6ddbc1cd46474160415b

  • SSDEEP

    12288:PyXIqz8+7UpplLvc+sB/imDYQnpVglo08YprdZlA0LIhCHotWZ/j/IG0Do:q4m8fxvi/iGtMlLZi0THUM

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • MDE_File_Sample_cf9e4c7534e0116cae7f8714e3284061ce058ff6.zip
    .zip

    Password: infected

  • gescanntes-Dokument.zip
    .zip

    Password: infected

  • gescanntes-Dokument.doc
    .doc windows office2003

    ThisDocument

    Module1