Cryptam // document analysis


Sample Details

original filename: a9079d044e1b06d7d244363a0aecadf0034727670695cf9e6889c487fe9a0ac9_bcmd.doc

size: 970752 bytes
submitted: 2019-02-07 06:05:48
md5: bd1a77d3a81d86001db39b9f20de204e
sha1: e193bf1afeb63a944246a98ce65140328396b87a
sha256: a9079d044e1b06d7d244363a0aecadf0034727670695cf9e6889c487fe9a0ac9
ssdeep: 12288:eEJMCd3O9pjvo9weA+Ek77n0jvgWAeCYCc6GH76H1j6:eETOvvo9FEfvgWeE
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 2.05 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe 80724fd6f77c0ff70f88d36f3d84484f / 946176 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: 80724fd6f77c0ff70f88d36f3d84484f
sha1: ec78ea5bd0e33ae40e53a02f972221bc66399a89
sha256: fc73a896d2c027eb22669084f59c03565e9a30c204f4ccbcb2b34f29d64c9944
view strings