flash

Analysis details

Analysis Id 50178
API (Web) Id 22987
Submission time 13.03.2018 22:28:25
Analysis start and end time 13.03.2018 22:28:36 / 13.03.2018 22:42:36
Sample
BjgOdvod7.doc (To download please log in)
MD5 cff56ec9776cc6449531f1a7fffc540f
SHA1 ac4ed1d4d0bdb8207c48f2e7d9819e67f5c8dd65
SHA256 a4870bb398acdcc2f2c0c3396d3e29b7cc1bdd4459df1d19834fc38471427436
Technologies
Status
finished

System: Windows 7 SP1 (with Office 2010 SP2, IE 11, FF 54, Chrome 60, Acrobat Reader DC 17, Java 8.0.1440.1, Flash 30.0.0.113)

Full Reports

HTML Report
9.6 MB
PDF Report
3.4 MB
XML Report
13.4 MB
JSON Report Clean structure
10.6 MB
JSON Report
30 Bytes

Threat Intelligence

MAEC Report
30 Bytes
MISP Report
30 Bytes
OpenIOC Report
30 Bytes

Reduced Reports

HTML Executive
2.8 MB
HTML Report Light (Covers only most important data)
30 Bytes
XML Report Light (Covers only most important data)
30 Bytes
JSON Report Light Clean Structure (Covers only most important data)
30 Bytes
JSON Report Light (Covers only most important data)
30 Bytes

Secondary Analysis

XML Incident Report
7 KB
JSON Fixed Incident Report
30 Bytes
JSON Incident Report
30 Bytes
Memory dumps
30 Bytes
Unpacked PE files
30 Bytes, pw = infected
Dropped Binaries
30 Bytes, pw = infected
Dumped Strings (from memory)
30 Bytes
Dumped Strings (from dropped binaries)
30 Bytes
Network PCAP (filtered)
460 KB
Network PCAP (full)
460 KB
Decompiled .NET projects
111 KB
Screenshots
30 Bytes

System: Windows 7 SP1 (with Office 2010 SP2, IE 11, FF 54, Chrome 60, Acrobat Reader DC 17, Java 8.0.1440.1, Flash 30.0.0.113)
Run Condition: without instrumentation

Full Reports

HTML Report
9.0 MB
PDF Report
3.4 MB
XML Report
12.8 MB
JSON Report Clean structure
10.1 MB
JSON Report
30 Bytes

Threat Intelligence

MAEC Report
30 Bytes
MISP Report
30 Bytes
OpenIOC Report
30 Bytes

Reduced Reports

HTML Executive
2.4 MB
HTML Report Light (Covers only most important data)
30 Bytes
XML Report Light (Covers only most important data)
30 Bytes
JSON Report Light Clean Structure (Covers only most important data)
30 Bytes
JSON Report Light (Covers only most important data)
30 Bytes

Secondary Analysis

XML Incident Report
7 KB
JSON Fixed Incident Report
30 Bytes
JSON Incident Report
30 Bytes
Memory dumps
30 Bytes
Unpacked PE files
30 Bytes, pw = infected
Dropped Binaries
30 Bytes, pw = infected
Dumped Strings (from memory)
30 Bytes
Dumped Strings (from dropped binaries)
30 Bytes
Network PCAP (filtered)
461 KB
Network PCAP (full)
461 KB
Decompiled .NET projects
111 KB
Screenshots
30 Bytes