Overview

overview

10

Static

static

8

Плате...UR.rtf

windows7-x64

10

Плате...UR.rtf

windows10-2004-x64

10

Сопро...и.rtf

windows7-x64

10

Сопро...и.rtf

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    bfb65fdc244e4f0394cef73fe45357f0.zip

  • Size

    81KB

  • MD5

    8d5169b7c9184adc9712bfa1d4127e0b

  • SHA1

    6beea84179a6e6cc33a7f49feeae8403fb50683c

  • SHA256

    3842c275b563cded76008bff8feb01f8885690a2b9e5de6e46dc1e7626f90efb

  • SHA512

    4d387d54b81b7a59991cac8c329dd140f5ba7f6784e594a8f2eb4936e3494be228d4828ae4688d460c8c2730095363b4686e92b545ca9e5a8079661eb264dca0

  • SSDEEP

    1536:OmOvsjuNem1SBiGMYR4LNOKRp3u0eFW//kplVFByxWVyYmmzkU:OmOvsmQBMVfH30FWkX3B4WVZbzz

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 2 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • bfb65fdc244e4f0394cef73fe45357f0.zip
    .zip

    Password: infected

  • Invoice.rar
    .rar
  • Платеж в iнозеной валюте.doс
    .rar
  • Платеж в iнозеной валюте 1800 EUR.rtf
    .doc .rtf windows office2003

    ThisDocument

  • Сопроводiтельни документи.rtf
    .doc .rtf windows office2003

    ThisDocument