Overview

overview

10

Static

static

8

1c1f3eaf14...47.doc

windows7-x64

4

1c1f3eaf14...47.doc

windows10-2004-x64

10

23e8349880...94.doc

windows7-x64

4

23e8349880...94.doc

windows10-2004-x64

1

5568d72be1...f.xlsm

windows7-x64

1

5568d72be1...f.xlsm

windows10-2004-x64

1

b8eedd0138...3.docm

windows7-x64

10

b8eedd0138...3.docm

windows10-2004-x64

10

bcdf20e654...7.docm

windows7-x64

10

bcdf20e654...7.docm

windows10-2004-x64

10

c82717259c...2.docm

windows7-x64

10

c82717259c...2.docm

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    A.rar

  • Size

    3.0MB

  • MD5

    863bc8fe5e347b71fa56b17657999ab8

  • SHA1

    7cb8f68159647957c27f5014d295ec48468fa039

  • SHA256

    7714602b44e30e482f50789f308caf60998c93d667ada525934f104ec4bbf8a1

  • SHA512

    90bc5ae6e82c097fedb07edec6b5291af63459f339a9334a265a1e289a6b1acfc50080da31f92b7acac7ecdf1a48ff6b031d8d7834ca94d7ec89cb859e89cd76

  • SSDEEP

    49152:BW6wefnsMxOIHBGGYE4hmM9GlnHbavTGYtxzJ/3h5bdiZNHYtyWssbFPx:kofnlxpHEGYE4p9GlaCYvzJ/0HKNx

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 2 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • A.rar
    .rar
  • 1c1f3eaf142c53480147c6e98cea4547
    .doc windows office2003

    ThisDocument

  • 23e8349880dde570473345c8b6ba8d94
    .doc windows office2003
  • 5568d72be1bdebf9187261a24b3b324f
    .xlsm office2007

    ЭтаКнига

    Лист1

  • b8eedd013827b960eee4c0ae07ae5513
    .docm office2007

    ThisDocument

  • bcdf20e65445ed6bda794d958025e417
    .docm office2007

    ThisDocument

  • c82717259c368b69cb64572e74042c02
    .docm office2007

    ThisDocument

  • f38ad97265f312101b15710f97bd2b72