Cryptam // document analysis


Sample Details

original filename: 6e27e7bd0d200faaf848b3d6aff75df31cb396db2c1d41f4914e418a16f8496b_sfuhtbpeb.doc

size: 557056 bytes
submitted: 2018-10-31 11:27:35
md5: c567f79b2a84a933c26ccbf15056b06d
sha1: 3357b937562feb845b8bc5e3117b5ef1de3fd7be
sha256: 6e27e7bd0d200faaf848b3d6aff75df31cb396db2c1d41f4914e418a16f8496b
ssdeep: 6144:cE9b6a0dohm1fv1pDjSz2klgH7Fj3FcRtl9aRRQ0OBjtguUOuc6Hc:cEsa0dem1fN1XF8tlmr2
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 1.77 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe 4089b794d866ee8b810905768cb74f49 / 532480 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: 4089b794d866ee8b810905768cb74f49
sha1: 8c8378b7689ebfff245339584e50a6a73e450701
sha256: 2402a43f01a15b5b33c2890d78370bd78e0833e962e9f2d30fdc9e35c2a59e59
view strings