Overview

overview

10

Static

static

8

eicar-stan...nt.pdf

windows7-x64

3

eicar-stan...nt.pdf

windows10-2004-x64

3

eicar-stan...rt.pdf

windows7-x64

3

eicar-stan...rt.pdf

windows10-2004-x64

3

eicar-stan...om.com

windows7-x64

eicar-stan...om.com

windows10-2004-x64

eicar-stan...ho.xls

windows7-x64

10

eicar-stan...ho.xls

windows10-2004-x64

1

eicar-stan...o.xlsx

windows7-x64

10

eicar-stan...o.xlsx

windows10-2004-x64

1

eicar-stan...ho.xls

windows7-x64

10

eicar-stan...ho.xls

windows10-2004-x64

10

eicar-stan...o.xlsm

windows7-x64

10

eicar-stan...o.xlsm

windows10-2004-x64

10

eicar-stan...ox.xls

windows7-x64

3

eicar-stan...ox.xls

windows10-2004-x64

1

eicar-stan...x.xlsm

windows7-x64

3

eicar-stan...x.xlsm

windows10-2004-x64

1

eicar-stan...ho.xls

windows7-x64

10

eicar-stan...ho.xls

windows10-2004-x64

10

eicar-stan...o.xlsm

windows7-x64

10

eicar-stan...o.xlsm

windows10-2004-x64

10

eicar-stan...le.xls

windows7-x64

3

eicar-stan...le.xls

windows10-2004-x64

1

eicar-stan...e.xlsm

windows7-x64

3

eicar-stan...e.xlsm

windows10-2004-x64

1

eicar-stan...ox.pps

windows7-x64

3

eicar-stan...ox.pps

windows10-2004-x64

1

eicar-stan...x.pptm

windows7-x64

3

eicar-stan...x.pptm

windows10-2004-x64

1

eicar-stan...ho.pps

windows7-x64

10

eicar-stan...ho.pps

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eicar-standard-antivirus-test-files.zip

  • Size

    500KB

  • MD5

    2c0639649b894a0845bc0601fa67b3c7

  • SHA1

    dcb53d4fb45650fe1e49aada7178972065c4e1dc

  • SHA256

    648eb3dd8252073b53f16887084c5415f56e90877aee69d29393efe1382679b4

  • SHA512

    f50e5fafac06bd5ee3273e14e61722d4f8ba282776d78b89682a409c1cc4cf7c77b28dfc17b8095241a771873c9629f6079395689d83368c4fc9745f0c5bb251

  • SSDEEP

    12288:s+LA9qkSthlow8qMlUIQ3EaVALm3zyo7Dui3d/FzNh5UT4QBaisl0mT:d5lp8qMlzQH6S35bu4P

Score
8/10
pdfjavascriptmacromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 8 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro
  • PDF contains JavaScript

    Detects presence of JavaScript in PDF files.

    pdfjavascript
  • PDF contains one or more embedded files

    Detects presence of embedded files in PDF files.

    pdf
  • EICAR Anti-Malware test file 3 IoCs

Files

  • eicar-standard-antivirus-test-files.zip
    .zip
  • eicar-standard-antivirus-test-files/.git/HEAD
  • eicar-standard-antivirus-test-files/.git/config
  • eicar-standard-antivirus-test-files/.git/description
  • eicar-standard-antivirus-test-files/.git/hooks/applypatch-msg.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/commit-msg.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/fsmonitor-watchman.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/post-update.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/pre-applypatch.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/pre-commit.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/pre-merge-commit.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/pre-push.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/pre-rebase.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/pre-receive.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/prepare-commit-msg.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/push-to-checkout.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/sendemail-validate.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/hooks/update.sample
    .sh linux
  • eicar-standard-antivirus-test-files/.git/index
  • eicar-standard-antivirus-test-files/.git/info/exclude
  • eicar-standard-antivirus-test-files/.git/logs/HEAD
  • eicar-standard-antivirus-test-files/.git/logs/refs/heads/master
  • eicar-standard-antivirus-test-files/.git/logs/refs/remotes/origin/HEAD
  • eicar-standard-antivirus-test-files/.git/objects/pack/pack-50f38735dc565e93b481055ead27282664466978.idx
  • eicar-standard-antivirus-test-files/.git/objects/pack/pack-50f38735dc565e93b481055ead27282664466978.pack
  • eicar-standard-antivirus-test-files/.git/objects/pack/pack-50f38735dc565e93b481055ead27282664466978.rev
  • eicar-standard-antivirus-test-files/.git/packed-refs
  • eicar-standard-antivirus-test-files/.git/refs/heads/master
  • eicar-standard-antivirus-test-files/.git/refs/remotes/origin/HEAD
  • eicar-standard-antivirus-test-files/.github/FUNDING.yml
  • eicar-standard-antivirus-test-files/README.md
  • eicar-standard-antivirus-test-files/eicar-adobe-acrobat-attachment.pdf
    .pdf
  • document.txt
  • eicar-standard-antivirus-test-files/eicar-adobe-acrobat-javascript-alert.pdf
    .pdf
  • eicar-standard-antivirus-test-files/eicar-com.com
  • eicar-standard-antivirus-test-files/eicar-excel-dde-cmd-powershell-echo.xls
    .xls windows office2003
  • eicar-standard-antivirus-test-files/eicar-excel-dde-cmd-powershell-echo.xlsx
    .xlsx office2007
  • eicar-standard-antivirus-test-files/eicar-excel-macro-cmd-echo.xls
    .xls windows office2003

    Module1

    ThisWorkbook

    Sheet1

  • eicar-standard-antivirus-test-files/eicar-excel-macro-cmd-echo.xlsm
    .xlsm office2007

    Module1

    ThisWorkbook

    Sheet1

  • eicar-standard-antivirus-test-files/eicar-excel-macro-msgbox.xls
    .xls windows office2003

    Module1

    ThisWorkbook

    Sheet1

  • eicar-standard-antivirus-test-files/eicar-excel-macro-msgbox.xlsm
    .xlsm office2007

    Module1

    ThisWorkbook

    Sheet1

  • eicar-standard-antivirus-test-files/eicar-excel-macro-powershell-echo.xls
    .xls windows office2003

    Module1

    ThisWorkbook

    Sheet1

  • eicar-standard-antivirus-test-files/eicar-excel-macro-powershell-echo.xlsm
    .xlsm office2007

    Module1

    ThisWorkbook

    Sheet1

  • eicar-standard-antivirus-test-files/eicar-excel-macro-write-file.xls
    .xls windows office2003

    Module1

    ThisWorkbook

    Sheet1

  • eicar-standard-antivirus-test-files/eicar-excel-macro-write-file.xlsm
    .xlsm office2007

    Module1

    ThisWorkbook

    Sheet1

  • eicar-standard-antivirus-test-files/eicar-powerpoint-action-macro-msgbox.ppt
    .pps .ppt windows office2003
  • eicar-standard-antivirus-test-files/eicar-powerpoint-action-macro-msgbox.pptm
    .pptm office2007
  • eicar-standard-antivirus-test-files/eicar-powerpoint-action-powershell-echo.ppt
    .pps .ppt windows office2003
  • eicar-standard-antivirus-test-files/eicar-powerpoint-action-powershell-echo.pptx
    .pptx office2007
  • eicar-standard-antivirus-test-files/eicar-test.txt
  • eicar-standard-antivirus-test-files/eicar-word-macro-cmd-echo.doc
    .doc windows office2003

    ThisDocument

    NewMacros

  • eicar-standard-antivirus-test-files/eicar-word-macro-cmd-echo.docm
    .docm office2007

    ThisDocument

    NewMacros

  • eicar-standard-antivirus-test-files/eicar-word-macro-msgbox.doc
    .doc windows office2003

    ThisDocument

    NewMacros

  • eicar-standard-antivirus-test-files/eicar-word-macro-msgbox.docm
    .docm office2007

    ThisDocument

    NewMacros

  • eicar-standard-antivirus-test-files/eicar-word-macro-powershell-echo.doc
    .doc windows office2003

    ThisDocument

    NewMacros

  • eicar-standard-antivirus-test-files/eicar-word-macro-powershell-echo.docm
    .docm office2007

    ThisDocument

    NewMacros

  • eicar-standard-antivirus-test-files/eicar-word-macro-write-file.doc
    .doc windows office2003

    ThisDocument

    NewMacros

  • eicar-standard-antivirus-test-files/eicar-word-macro-write-file.docm
    .docm office2007

    ThisDocument

    NewMacros

  • eicar-standard-antivirus-test-files/eicar-zip.zip
    .zip
  • eicar.com
  • eicar-standard-antivirus-test-files/eicar-zip2.zip
    .zip
  • eicar_com.zip
    .zip
  • eicar.com