Cryptam // document analysis



Sample Details

original filename: b78160f869a535bab98841522a100513fb3ca36339ed34844ab5ef98ed80e1cd

size: 22528 bytes
submitted: 2014-04-10 06:52:02
md5: 0f557247b8bd77b2c2790f1c82004843
sha1: 1983f5873a27404ee8ff0cf1878a6014e887c613
sha256: b78160f869a535bab98841522a100513fb3ca36339ed34844ab5ef98ed80e1cd
ssdeep: 192:gpUiwbmTdt2nU1DBXLhG5pX0jAUARbeaxHm7lw0:g+dbmTdtmQpLhG5pX0jAUAnC
content/type: Composite Document File V2 Document, Little Endian, Os
analysis time: 93.61 s
result: malware [22]

signature hits:

2570: exploit.office MSCOMCTL.OCX TabStrip CVE-2012-1856
15954: suspicious.office Visual Basic macro


Strings

raw strings