Cryptam // document analysis


Sample Details

original filename: 309a76fd95d7aa23ea4ac9ba02786f6611fbd6565043f6cf14130c90b2281f0d_dd.doc

size: 458752 bytes
submitted: 2019-02-25 07:23:45
md5: 3b9cc6ac2c28d0512c9d3f1370d0cff0
sha1: cef0050217f4727009422e8ec1dcf032fd5516c8
sha256: 309a76fd95d7aa23ea4ac9ba02786f6611fbd6565043f6cf14130c90b2281f0d
ssdeep: 6144:IEbIx3uxw2StAUcuZH+gC/D7d9j93yM6aRzV4xZFqAD4rSKmpme:IEEluDcH+5zjk1SSKmpme
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 2.49 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe f458714c8572e0ef05881b7c48a7d396 / 434176 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: f458714c8572e0ef05881b7c48a7d396
sha1: 6e4a6d677d695b917c8ac93094daf63857d6cab0
sha256: 3a8f15c6e9aa8247d1e696623d5f8320a803f9bbd0c41e6ff2f81394b80a2765
view strings