Behavioral task
behavioral1
Sample
SecuriteInfo.com.not-a-virus.HEUR.Downloader.MSOffice.Alien.gen.18914.doc
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.not-a-virus.HEUR.Downloader.MSOffice.Alien.gen.18914.doc
Resource
win10v2004-20230220-en
General
-
Target
SecuriteInfo.com.not-a-virus.HEUR.Downloader.MSOffice.Alien.gen.18914.21817
-
Size
1.1MB
-
MD5
29835ed466ccc13d014f563c7d750db5
-
SHA1
617b2671bf18760b44b88ddbf986fa5f3689810b
-
SHA256
ed0650eb9d5784d336f42400bbf9da079f4e099401c090fda7dfdc89ed6764ef
-
SHA512
dd69a17eecc0c5c46ed00195e41e0112880e9d6ee0bad36a400de0dbc406430c28b4f96a0c236b5b557a5f259066d5642c773c5d2c8f6ec78290920cda2b9434
-
SSDEEP
24576:aSYuchKJeclat5QJOjyMzj8qDACPnRGkhDNwSMv7gWVGhWAcgo:kuchyatmcjyej8IAyG0WSMv7gqGhW
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
Processes:
resource yara_rule sample office_macro_on_action -
Processes:
resource sample
Files
-
SecuriteInfo.com.not-a-virus.HEUR.Downloader.MSOffice.Alien.gen.18914.21817.doc .21817 windows office2003
ThisDocument
Module1
Module2