Behavioral task
behavioral1
Sample
PO0000009936.doc
Resource
win7-20230220-en
windows7-x64
7 signatures
150 seconds
General
-
Target
PO0000009936.zip
-
Size
695KB
-
MD5
375d5f4814ffa113ff451b3e622d046a
-
SHA1
4c9fca4ed06ca9c7c976728f661151df6ff766d6
-
SHA256
fbc60c048caa0befdb10aaebf3fa5fa073d98908df453d2e7f75c6257258dd16
-
SHA512
c700e3f675a293fd8d55e63fbf9596ba56d9e13070cb17148fa6c81c5f76c84de5ea4b3d42a5cdfd6af6e7fbaf559500dfeff04200f7e523cbceaeffe8bf4b24
-
SSDEEP
6144:uJNbwmfcuHom8Hz2f//ywiWT8xVTI5wqd:KbPHom8TYyCT8x5I5w6
Score
8/10
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule static1/unpack001/PO0000009936.doc office_macro_on_action -
Processes:
resource static1/unpack001/PO0000009936.doc
Files
-
PO0000009936.zip.zip
-
PO0000009936.doc.doc windows office2003
ThisDocument
Module1