Loading ...

Play interactive tourEdit tour

Windows Analysis Report sample.doc.vir

Overview

General Information

Sample Name:sample.doc.vir (renamed file extension from vir to doc)
Analysis ID:528758
MD5:6be56f977b6692fb6ce5f94e110664e3
SHA1:f4d5ce35c656e0f156a2ced453a964faabef09fb
SHA256:ae94cd20505f914bba5e612acb80c429c5606a739c0838e3a5f87bfcc7cc8519
Tags:docxvir
Infos:

Most interesting Screenshot:

Detection

Score:100
Range:0 - 100
Whitelisted:false
Confidence:100%

Signatures

Yara detected MalDoc
Multi AV Scanner detection for submitted file
Sigma detected: Office product drops script at suspicious location
Office document tries to convince victim to disable security protection (e.g. to enable ActiveX or Macros)