Overview

overview

10

Static

static

8

1208_37832604.doc

windows7-x64

10

1208_37832604.doc

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e73d30be4e447f7681e1f5f600cf80c66726ce97f1359c12fcabb6013e5a16e0.zip

  • Size

    387KB

  • MD5

    cc7e2db4412f0012acfc497cdf04e944

  • SHA1

    81c11089013cfd75bfc33e4e755adf9b60335421

  • SHA256

    e73d30be4e447f7681e1f5f600cf80c66726ce97f1359c12fcabb6013e5a16e0

  • SHA512

    7b732b1b85766a66a1feab971325b5e17c5416c4d4c364f7842713b246613067410d4f967febe68d17b578f36c7c8648ff5b5d1c77341ad8416dbf54a0931cd4

  • SSDEEP

    6144:5s/s98rUmTQ/cDRTpCJEx8SuyxyRWS+B4UtbfDYFcT5EeHupfN8e90rmVlZd6:j1/cFp2ECrqtbScT51upOe90aXZd6

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • e73d30be4e447f7681e1f5f600cf80c66726ce97f1359c12fcabb6013e5a16e0.zip
    .zip

    Password: infected

  • 1208_37832604.doc
    .doc windows office2003

    ThisDocument

    Module10

    Module12

    Module11

    Module1