General
-
Target
11244387621.zip
-
Size
3.6MB
-
MD5
249a94392934c9c6fc870616152ef937
-
SHA1
497896fa4a4c4e6c1228cbad7815fdb259193ed8
-
SHA256
1e1dfe7b3de291e3380f43e6499e83cbe616417f4c5af092e8a692deea8f2e19
-
SHA512
4f0f44862ef0d425721de2f9341fae67f25dc60c80292fcc2303e7352b67a93e6ee781d5f9cbbe6685d0e24ef1ddccb908a9a889ce910ff8349d751938ef46a0
-
SSDEEP
98304:cUxxZAQYGBn2k+PgdN1+PvGv1NKY2PKqtbe+B2v:h9Fugd6Hs7KZyme+i
Score
8/10
Malware Config
Signatures
-
Suspicious Office macro 1 IoCs
Office document equipped with macros.
Files
-
11244387621.zip
Password: infected
-
c4e026c745dbf9d5963f39c938c11bdd04ee23898d9e261fbc77346034090e75
ЭтаКнига
Лист1
modList00
Лист2
List09
List04
List05
modImport
List03
modClassifierValidate
List06
Лист101
MessageDialogue
modList02
modDefines
List07
Wrapper
modReestr
List08
List02
List10
frmProgressLoad
modListComm
frmDrugsLoad
modfrmDrugsLoad
frmReestr
AllSheetsInThisWorkbook
Лист45
Лист3
modProv
frmSetRowsHeight
modGlobals
modfrmReestr
frmValidationInProgress
IMessageWindow
modCommonProv
modProvGeneralProc
modUpdTemplLogger
List00
ListComm
ListCheck
modInstruction
Instruction
modHyp
frmRegion
modAnimatedFormsEffects
modAnimatedFormsGlobals
modfrmRegion
modInternetConnectionState
cHandleEvents
modServiceModule
modfrmCheckUpdates
modHTTP
modUpdTemplMain
modThisWorkbook
frmCheckUpdates
modScrolling
modUpd_Templ_Caller
modUpd_Templ_Defines
clsUpdater
ISAXHandler
modUsingAPIControlApplications
modUpd_Templ_HTTP_Request
List11
Лист5