Cryptam // document analysis


Sample Details

original filename: eb0d43db3bc873b9d62111952c022df4d6da184596ff11f7cd9dee03ea3eaf77_sm.doc

size: 507904 bytes
submitted: 2018-08-21 06:03:59
md5: 47224b1964a59ca1612c47fca25aee84
sha1: b7c8314b8133f05923ee4c15fb8e3bb3221182b0
sha256: eb0d43db3bc873b9d62111952c022df4d6da184596ff11f7cd9dee03ea3eaf77
ssdeep: 12288:uEsnNiMsg/uvdInGrHMPA1D3bFyQdT01iUf:uEsnNnt/uVHM41gQdT01Zf
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 1.33 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe 7317faebe5e27c8450647e1510ba79d0 / 483328 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: 7317faebe5e27c8450647e1510ba79d0
sha1: 64f18ec65094d2d4810565a2823a7b67e0d14520
sha256: c1654e67f9a1f7770923d9493547ff0a529251acd3736ab264d65f7b15209a94
view strings