Loading ...

Play interactive tourEdit tour

Analysis Report Minerva Bunkering (covid-19 stimulus funds).pdf

Overview

General Information

Sample Name:Minerva Bunkering (covid-19 stimulus funds).pdf
Analysis ID:319937
MD5:ec8cab28ade934e04d75978b41f4add2
SHA1:a1acf24bf7d8e9a886d56b51fa0e0d968daea89a
SHA256:47093fca6e0c5522f65da88af807e8706af9eba01c84ec29d108af469fe65eb9

Most interesting Screenshot:

Detection

Score:22
Range:0 - 100
Whitelisted:false
Confidence:60%

Signatures

Outdated Microsoft Office dropper detected
Contains functionality to access loader functionality (e.g. LdrGetProcedureAddress)
IP address seen in connection with other malware
Potential document exploit detected (performs DNS queries)
Tries to resolve domain names, but no domain seems valid (expired dropper behavior)

Classification