Cryptam // document analysis


Sample Details

original filename: 0b41a2547336a3d600b478f96e052db3c74fb17d84f470aa0a8a9b396a3358e1_2b93ec0.doc

size: 1028096 bytes
submitted: 2019-02-04 13:03:14
md5: 9ae6a0a7879ef07bc58d47d02f3b928e
sha1: d448945bad56e4dcc8d64ff37cf3fb30fb807ac7
sha256: 0b41a2547336a3d600b478f96e052db3c74fb17d84f470aa0a8a9b396a3358e1
ssdeep: 24576:AEpzcntVODfDE6g0F84f70QNZAVF+aWw+Ldoru7XB/qEJbTRpn+rI9qJqPoeKtl4:AEpzXRT
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 4.99 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe 3894aeac68f27b9c2a5fa219cc8e2f08 / 1003520 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: 3894aeac68f27b9c2a5fa219cc8e2f08
sha1: 57dc1def681a597396257f5c763463b92ca53ce0
sha256: dccd6bbb0a872aaa3fbcf408829ce60deee430927f60cc986f59343ee91b8dc4
view strings