Malicious
MS Office Document
MD5: 3cefc7d607d1bfb2ed3855cda11072c4
Size: 1.31 MB
application/vnd.ms-office
General
Structural Analysis
Config.1
Yara Rules9
Sync
Community
Summary by MalvaGPT
Characteristics
|
Hash | Hash Value |
|---|---|
| MD5 | 3cefc7d607d1bfb2ed3855cda11072c4
|
| Sha1 | 4e04540fa4a792d958a8ac39ca1acbd42c6fac46
|
| Sha256 | f93ff95b099ee0ae13f3bb4e6b80d3160b0485bb1e4f629be6895442f90355b8
|
| Sha384 | ceeffa7b5a024d8f407aa6f38224328f639212a7208edcd99cd19b1e6f5d122812066b662c05e92d56b3bbf3b41ddf09
|
| Sha512 | 2abaaddc14a823d28550f16fcb719babfadf70d9c264efe2d824e4370f1d139cdc47438cf92fba794ab6a25a01818d5a7c80c00ef2a5fed65e9a6a0868a3ad68
|
| SSDeep | 24576:FYNSz7NRNXjA/+OmXCKcsKftqgyoQmuo/2rBWQA5U740mecvjJ:emjljA/jmSsKftqJoQmuo/OBuS40mec
|
| TLSH | 29552326FE839E9BDD0E00349667A0D1791F9E22BB445D6F37483B4A6C72131C7B6A1C
|
File Structure
Root Entry
CompObj
Workbook
SummaryInformation
DocumentSummaryInformation
MBD001C6ACF
Package
[Content_Types].xml
_rels
.rels
xl
_rels
workbook.xml.rels
workbook.xml
sharedStrings.xml
media
image7.png
image7.png-preview.png
image8.jpeg
image8.jpeg-preview.png
image9.emf
image6.png
image6.png-preview.png
image5.jpeg
image5.jpeg-preview.png
image4.png
image4.png-preview.png
image2.png
image2.png-preview.png
image3.png
image3.png-preview.png
image1.png
image1.png-preview.png
styles.xml
theme
theme1.xml
embeddings
oleObject1.bin
Root Entry
Ole
CompObj
CONTENTS
#Stream {UglyToad.PdfPig.Core.XrefLocation}
#Stream {UglyToad.PdfPig.Core.XrefLocation}.exif
#Stream {UglyToad.PdfPig.Core.XrefLocation}-preview.png
Text (Preview)
Page #1
Page #2
Page #3
Structure
printerSettings
printerSettings1.bin
CompObj
MBD001C6AD0
Ole
_VBA_PROJECT_CUR
PROJECT
PROJECTwm
VBA
dir
_VBA_PROJECT
Malware Configuration - URLs in PDF
|
Config. Field0 | Value |
|---|---|
| URL #1 | www.casilica.comSub:Air |
Informations
|
Name | Value |
|---|---|
| CONTENTS | 1.7 |
| CONTENTS | |
| CONTENTS | D:20260418134318+05'30' |
| CONTENTS | D:20260418134318+05'30' |
| CONTENTS | 281411 AHU Quote Ananya Cleanroom Technologies.xlsx |
| CONTENTS | Microsoft: Print To PDF |
| CONTENTS | |
| CONTENTS | D:20260418134318+05'30' |
| CONTENTS | D:20260418134318+05'30' |
| CONTENTS | Microsoft: Print To PDF |
| CONTENTS | 281411 AHU Quote Ananya Cleanroom Technologies.xlsx |
3cefc7d607d1bfb2ed3855cda11072c4 (1.31 MB)
File Structure
Root Entry
CompObj
Workbook
SummaryInformation
DocumentSummaryInformation
MBD001C6ACF
Package
[Content_Types].xml
_rels
.rels
xl
_rels
workbook.xml.rels
workbook.xml
sharedStrings.xml
media
image7.png
image7.png-preview.png
image8.jpeg
image8.jpeg-preview.png
image9.emf
image6.png
image6.png-preview.png
image5.jpeg
image5.jpeg-preview.png
image4.png
image4.png-preview.png
image2.png
image2.png-preview.png
image3.png
image3.png-preview.png
image1.png
image1.png-preview.png
styles.xml
theme
theme1.xml
embeddings
oleObject1.bin
Root Entry
Ole
CompObj
CONTENTS
#Stream {UglyToad.PdfPig.Core.XrefLocation}
#Stream {UglyToad.PdfPig.Core.XrefLocation}.exif
#Stream {UglyToad.PdfPig.Core.XrefLocation}-preview.png
Text (Preview)
Page #1
Page #2
Page #3
Structure
printerSettings
printerSettings1.bin
CompObj
MBD001C6AD0
Ole
_VBA_PROJECT_CUR
PROJECT
PROJECTwm
VBA
dir
_VBA_PROJECT
Characteristics
Malware Configuration - URLs in PDF
|
Config. Field0 | Value |
|---|---|
| URL #1 | www.casilica.comSub:Air |
You must be signed in to post a comment.
You need a premium account to access this feature.
You must be signed in to post a comment.