Cryptam // document analysis


Sample Details

original filename: Country Checklist 39039039CHD3001 China.xlsm

size: 158455 bytes
submitted: 2017-08-08 10:43:37
md5: 1becf2ca20061d27591402c7d120d40b
sha1: 633669d3b02005d3625cc7c53992d03193c9c7fe
sha256: 64368459f8f09130b62d21ce6b0f6664d7f4aa6b43b4f02accd2822107d3f737
ssdeep: 3072:JBVElZGbzzrdmNF1VHTvxmVb9TRLdbUI2Um:JBVm6nezvxmzldwUm
content/type: Microsoft Excel 2007+
analysis time: 0.00 s
result: malware [22]
embedded file objects: yes
embedded executable: found

signature hits:

embedded.file vbaProject.bin 212e7d25c20b4e725100061fed0d28b6
vbaProject.bin.111838: suspicious.office Visual Basic macro
vbaProject.bin.11509: string.shell32.dll
vbaProject.bin.48765: string.vbs On Error Resume Next


Strings

raw strings

Dropped Files

vbaProject.bin at zip
md5: 212e7d25c20b4e725100061fed0d28b6
sha1: 323cd9e9de0819c4a6146d06f7a6fff7dfd1206e
sha256: a11aecbf7104f6c32227288b67e5b8ef2b234e07c3284b306999e82a64572aa9
view strings