Behavioral task
behavioral1
Sample
A 2618033.doc
Resource
win7-20230220-en
windows7-x64
12 signatures
150 seconds
Behavioral task
behavioral2
Sample
A 2618033.doc
Resource
win10v2004-20230221-en
windows10-2004-x64
12 signatures
150 seconds
General
-
Target
A 2618033.zip
-
Size
717KB
-
MD5
581709f6d99126b05d3cfd3e88a07438
-
SHA1
5cf5cff07e700adcec8fb7a0696a7db524a40a30
-
SHA256
1858af1beb761e5763bd2af55e4e3ccc3c48064061ab36805f405ed8162a3dc8
-
SHA512
da515d78458f629ed6e52dd0ac8af3c876b1d7eff053113f032f1781b31f24f5e42b7c28b785e1511844826c3793bcc5b5fdc197cbb68939db5a008a1ef69804
-
SSDEEP
3072:eSgWiG5Z++yxJU4djtxx0SA0cEaEwj5hsXk6h4x3OOPi+RA5KYncoJMb:eSXvl4djtxx0ucEaHiXkllOU9o/Ab
Score
8/10
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule static1/unpack001/A 2618033.doc office_macro_on_action -
Processes:
resource static1/unpack001/A 2618033.doc
Files
-
A 2618033.zip.zip
-
A 2618033.doc.doc windows office2003
ThisDocument
Module1