Cryptam // document analysis


Sample Details

original filename: b7e2a6f8f395c1ea4f82b9817b79a935.virus

size: 92160 bytes
submitted: 2017-07-12 17:44:28
md5: b7e2a6f8f395c1ea4f82b9817b79a935
sha1: 446f654def44151dd2faa59ac5a1ff2caee26af9
sha256: 6abd5f4212fa956b82729bb0043a2e6cabacf8fa74ce737f8ba0225f9a9521f9
ssdeep: 1536:0vvvvnb+ywdtY6THhzBCzMUE2idCElXfNFfSA1PGeTay3Qb:4wMYhqzgdCPiay3s
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 1.09 s
result: malware [22]
embedded executable: found

signature hits:

78034: suspicious.office Visual Basic macro
39075: string.RegOpenKeyExA
75554: string.KERNEL32


Strings

raw strings
decrypted raw strings