Cryptam // document analysis


Sample Details

original filename: 5eb1f7b30969052ba3001843cd477ee4547baa37c5150ab65d4fa29ceb519e27_doc-913188-009pdf.doc

size: 507904 bytes
submitted: 2018-10-07 06:08:34
md5: e066b364aeda16edf04e2ba15fffed0c
sha1: 21b85a4252074dee6dd43b97bb3f956ebdddfea7
sha256: 5eb1f7b30969052ba3001843cd477ee4547baa37c5150ab65d4fa29ceb519e27
ssdeep: 12288:EEZmwbqEdZpuWloyM/6+bZIxVlH160xDADtw1:EEZLobi+9I/lbP
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 1.61 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe b5258815532af5fe14a05ffb8dfc74c7 / 483328 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: b5258815532af5fe14a05ffb8dfc74c7
sha1: 629d5ce29ae8680a9c11ce2450b9582291b3db75
sha256: 0a8d04ccf29a20cc213bf6330d6f07ee2f5729d726fa02fc80ff8e72c4000c0b
view strings