Overview

overview

8

Static

static

8

4e6ea05078...14.doc

windows7-x64

1

4e6ea05078...14.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    4e6ea0507822fcdc495138add526ef815f8ad5e238031a76b314a89f5c830314

  • Size

    313KB

  • MD5

    1c53b3138d535a0f3026a5511841bfff

  • SHA1

    72447f2b766e4147a6a0feab9294fea9cadf64a0

  • SHA256

    4e6ea0507822fcdc495138add526ef815f8ad5e238031a76b314a89f5c830314

  • SHA512

    f602f3b78e8af6b6ba29d28c82ee5a8bd6ee3bc08e5cecee4e19f9dfdba5102eecae681b577fe16cff005bc1b49cb0da11c288d56d6860c4d701793599b6f186

  • SSDEEP

    6144:2pZU1IKauirhOhnt+P5rUIqxDb11Lj+kLus1dCtlXV7UL:2A1IKau9+P5eh1Lj+kLus1dCtlXV7UL

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • 4e6ea0507822fcdc495138add526ef815f8ad5e238031a76b314a89f5c830314
    .doc windows office2003

    ThisWorkbook

    Sheet1

    Toolbars

    Macros

    frmManager

    CADEngine

    frmCreate

    frmDefaults

    Support

    ReadRange