Cryptam // document analysis


Sample Details

original filename: f09c6fa0b3ec0eab1e2063d230f90841a147bbff9cf9bf2359ab050376d867df_selfinjectazor.doc

size: 544768 bytes
submitted: 2018-09-05 06:14:28
md5: 26fa8864e14aa24ceff9584f2ed8cccc
sha1: 4c26b14661e0a4508ed94c08ad553f831834edb8
sha256: f09c6fa0b3ec0eab1e2063d230f90841a147bbff9cf9bf2359ab050376d867df
ssdeep: 12288:hE8K6NStBr7h4ZhAfMXx7txVCLJHe/YdZBhUq:hEQ0XhceONSeAfB
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 1.69 s
result: suspicious
embedded executable: found

signature hits:

24654: string.This program cannot be run in DOS mode
dropped.file exe 8d65f322f55635977b79bde0586bad1c / 520192 bytes / @ 24576


Strings

raw strings
decrypted raw strings

Dropped Files

exe at 24576
md5: 8d65f322f55635977b79bde0586bad1c
sha1: 9a6f2315676c5974c24d821783fed9f5fdadec02
sha256: 25516f335c4f5ac8ac6f71cb42792522a870d4f1d4d8610dfcae2b9adba7ce75
view strings