Cryptam // document analysis


Sample Details

original filename: 21db736625bbc7ed0eef73970ac4d3d2d1e2de644c8e87eddd4cc77446dd5803_25dfd0.doc

size: 1052672 bytes
submitted: 2018-11-30 10:39:48
md5: cf21b677d1e40db38f1ef5b4fa03625f
sha1: cb2d0b70f1012bae6c1a3d960eb4a3b1a4d9c0df
sha256: 21db736625bbc7ed0eef73970ac4d3d2d1e2de644c8e87eddd4cc77446dd5803
ssdeep: 24576:eEgDRRWB+e+rQyYCGftXC0KK6RmHPZnrqSaCuly:eEgyerQyXGftXC8i6Zm7Cu
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 2.86 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe 238f00273fb963692eb14b070a661992 / 1028096 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: 238f00273fb963692eb14b070a661992
sha1: cda4c36004c58588874f9ea517f7246e8ea6283d
sha256: 804dace7415901823080fa53c0cfd153b392faa1332a436acf404dc8f428ef45
view strings