Cryptam // document analysis


Sample Details

original filename: 193e8868bf9fbb4fc5edb8a0e2400796ee644114d8a401c8550ce0aa958665ac_order2.doc

size: 438272 bytes
submitted: 2018-08-26 06:06:55
md5: cd23b9710a6f3bddf569663eca410316
sha1: 26afee2a515aa7c0d2ab691fadd85bfc948dcfbe
sha256: 193e8868bf9fbb4fc5edb8a0e2400796ee644114d8a401c8550ce0aa958665ac
ssdeep: 12288:sEfBZl1vvNQSnTlBZl1vvNQSnTnHrpq0sU5:sEJ1vvNQQTz1vvNQQTNq0x
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 1.46 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe 05b3b1770d7997051d5e86e26ee273c1 / 413696 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: 05b3b1770d7997051d5e86e26ee273c1
sha1: f584069c6b11ce9ae4ca1c2861c86f8c34a6ccdc
sha256: 280d19f2a6000f3b2f2294684f948b789d02566e09f636345466ab85ca60041e
view strings