Cryptam // document analysis


Sample Details

original filename: =?UTF-8?B?5py655S15ZSu5qW85aSE5bqV56i/LTIwMTguNC4xMi54bHM=?=

size: 396288 bytes
submitted: 2018-04-12 06:01:17
md5: d6821a50112d97c082dc0b841d3274af
sha1: 9cc5a1b54eea4756033c61452c75786738908989
sha256: a69e8236bf8968016cf717c482f8396b078a3ba8d09698629018a55b31335408
ssdeep: 6144:8VUpjDqF+wRj/eA05irs1xpaRvqnJy/1WkyeJT/G44NU2OeqtXGnC7:r1e1/G44i2qlM
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 0.75 s
result: malware [12]
embedded executable: found

signature hits:

328930: suspicious.office Visual Basic macro
314029: string.vbs On Error Resume Next


Strings

raw strings
decrypted raw strings