Cryptam // document analysis


Sample Details

original filename: df4459f8574e3561892bbe17e00119b192b3e500d556d8ce6465c25b596361e6_b7617d.doc

size: 1114112 bytes
submitted: 2019-02-04 21:50:18
md5: 3a781f316647d044e87aff2fd9e80f70
sha1: feb883f145aa749c82a407f3b165baa0c1aad663
sha256: df4459f8574e3561892bbe17e00119b192b3e500d556d8ce6465c25b596361e6
ssdeep: 12288:HEZ5h1o53ieN+QkAEOcIW0HzbzfftTmZ+ejiu:HEvh1o5S1QkAEGW0HzbzfftTmZxjN
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 7.44 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe 1d6c725ee6a1e55327357b774f9e4a64 / 1089536 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: 1d6c725ee6a1e55327357b774f9e4a64
sha1: f9cbee043265b187a5ada4a634f44b21c5519cf4
sha256: 313d9eb3cea053caae3fab64841f4be64dc1e7ef56aab71ccb6313c0486427ad
view strings