Cryptam // document analysis


Sample Details

original filename: DlgInternational.dotm

size: 1695098 bytes
submitted: 2017-07-12 11:42:07
md5: 72b13a2f8be8cf132d72e2cdc8d5e32c
sha1: 520e0fd8ba282d57db78e61a43e62719bd7b6371
sha256: cdd2da901e0fa66af03577003fcaab28ce4abcaaaae2445c268ae0022a672b6f
ssdeep: 49152:tEoIM5hObomd//8Fl8UBYvBp3079ShSY0IprNu:t07VE8UBm300tza
content/type: Microsoft Word 2007+
analysis time: 0.00 s
result: malware [22]
embedded file objects: yes
embedded executable: found

signature hits:

embedded.file vbaProject.bin 10b0b4da2234df9a83871e3c7fb920d3
vbaProject.bin.4032282: suspicious.office Visual Basic macro
vbaProject.bin.4109907: string.shell32.dll
vbaProject.bin.2705102: string.vbs On Error Resume Next


Strings

raw strings

Dropped Files

vbaProject.bin at zip
md5: 10b0b4da2234df9a83871e3c7fb920d3
sha1: c817a36d05fb017e3e2042c9a2ae981002d8be95
sha256: e33bde7764fdc6d7d0282d9cd96a86a3c1172b0f67a84bcd4a6004f03f4f4745
view strings