Cryptam // document analysis


Sample Details

original filename: 9f0922cbf2d211622861f642f57902a7bdd6ed77d5fe1db349105f65be7e7f3c_27e.doc

size: 344624 bytes
submitted: 2018-08-04 15:03:43
md5: bf876eb754c58fa965f0bd76c94bf26f
sha1: cbe324d80925d457f6812abde108589cbceb5b79
sha256: 9f0922cbf2d211622861f642f57902a7bdd6ed77d5fe1db349105f65be7e7f3c
ssdeep: 6144:CE6VaQoiyLJIwC5A/hKVTqtp8br20LLAJnWPEncpfpD3mIMiQIMuZX2L:CEliyWwcA/cOc60X/jxD2pi3ZXG
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 1.29 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe 310527cd4851598982f77ef64faa776e / 320048 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: 310527cd4851598982f77ef64faa776e
sha1: c388f67a5cf8af282d0641933622084c7bfafc64
sha256: febb8ac7e92df58711b5feb06e51b3e76af2d37306a364b186ee70691eacc842
view strings