Analysis results
Feature | Result |
---|---|
Verdict | Malicious |
SHA-256 | eec719798de02c60d853dfa81688d2668a95e113447753ca1c764d9dd1245e65 |
MD5 | baacb06439b2cee8a566cea6321d91a2 |
File size | 174493 bytes |
MIME | application/msword |
File info | Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, Code page: 1252, Title: Facere., Author: Antoine Clement, Template: Normal.dotm, Revision Number: 1, Name of Creating Application: Microsoft Office Word, Create Time/Date: Wed Jul 29 11:28:00 2020, Last Saved Time/Date: Wed Jul 29 11:28:00 2020, Number of Pages: 2, Number of Words: 5, Number of Characters: 35, Security: 0 |
Matching maldoc templates | Emotet ZLoader |
Suspicious findings in the VBA | Create showwindow Base64 Strings CreateObject Hex Strings Chr AutoExec |
Malicious methods | LOLBAS |
URLs | |
First reported | 16/04/2021 13:19:46 |
Scanning time | 3.24 sec |
Consult others | Triage VirusTotal Hybrid Analysis |