Cryptam // document analysis


Sample Details

original filename: 7e090f0f37841e397137f784e476c882cb8ae0a66691f58314f10e4a1046c065_py.doc

size: 491520 bytes
submitted: 2019-05-23 06:30:24
md5: 5db6a35fc1ffd9822feee02b20a914be
sha1: b411bd7f5abc43ae6153a0c9ccee2e4c74899d16
sha256: 7e090f0f37841e397137f784e476c882cb8ae0a66691f58314f10e4a1046c065
ssdeep: 12288:HEQJc/CAexnMNFZFnTXc0SrCQT5t8jQa1ywBG1vIyu0yapvPy+4VtAvUShUruV:HEec/nexsTX7SrCQ8jr1ywBG1vI4jy8V
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 1.68 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe 15c6e017ea30323ece95309fb1ae645d / 466944 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: 15c6e017ea30323ece95309fb1ae645d
sha1: 6b79a47986f18dba9bfeab0ad76bea36d7104489
sha256: ee4ebc74336f831ddd098c526faa36e631531e40ebc8045880c76f82f2d55285
view strings