General

  • Target

    14506356332.zip

  • Size

    975KB

  • MD5

    39d02e591dda791bd5bad9c3eda1410b

  • SHA1

    8c2c43c06a5367101657f87b5831ac1ca05be8ca

  • SHA256

    aad56a9cf8db8425f1ad9e2ccdbe27ab3a576777ca77d84902c68f3ae152644e

  • SHA512

    32d8c32219c6e23c14ef031c423238385d0457df568a952bad9514b67ccbe13decea469d37cae29255ef427e8e115a80d0c90c41a67d39565a5c5310cb07682c

  • SSDEEP

    24576:h9g4Ws6M5EkCmMtM0ZkVjW33S9dAM+0q9OxBAi3l:rg4r6M5HCztKoisMu9Md

Malware Config

Signatures

  • Office macro that triggers on suspicious action 2 IoCs

    Office document macro which triggers in special circumstances - often malicious.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 14506356332.zip
    .zip

    Password: infected

  • 526f48c6b3b767c119282e362eeb39238ac3593f7b3742eb08e67cd93d913a44
    .doc windows office2003
  • 585785a2b4f6bfdcf969f2c46f933b59385fff839f52ef83a689ca2a25c0c80b
    .zip
  • ロシア・ウクライナ戦争が日本のエネルギーに及ぼす影響-1.doc
    .doc windows office2003
  • ロシア・ウクライナ戦争が日本のエネルギーに及ぼす影響-2.docx
  • 632975a3642b0f2a6084880e59ffa19dfa8b08d13ac15b639e1e0ad3bdbf45bd
  • 7a4fd1cc932b96175055b2940242877cab728a9d7c7ee371cad8438b4e88a812
    .dll windows:6 windows x86 arch:x86

    a8c33621b218c44188bb778c5df940c4


    Headers

    Imports

    Exports

    Sections

  • f21745cc6306461d1ddb3c35ed6016468ce984bbd64bfb86139a392e3a45c495
    .doc windows office2003