Category | Machine | Started | Completed |
---|---|---|---|
FILE | s1_win7_x6402 | July 12, 2021, 6:02 p.m. | July 12, 2021, 6:06 p.m. |
-
WINWORD.EXE "C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE" "C:\Users\test22\AppData\Local\Temp\Ops Afg post 9-11.doc"
2428
Name | Response | Post-Analysis Lookup |
---|---|---|
designerzebra.com | 108.177.235.105 |
Suricata Alerts
No Suricata Alerts
Suricata TLS
No Suricata TLS
request | OPTIONS http://designerzebra.com/services/ |
request | HEAD http://designerzebra.com/services/check6 |
request | OPTIONS http://designerzebra.com/services |
request | PROPFIND http://designerzebra.com/services |
request | GET http://designerzebra.com/services/check6 |
file | C:\Users\test22\AppData\Local\Temp\~$s Afg post 9-11.doc |
Kaspersky | HEUR:Exploit.RTF.T1221.gen |
Rising | Downloader.Generic/RTF!1.D4A8 (CLASSIC) |
McAfee-GW-Edition | BehavesLike.BadFile.cv |
ZoneAlarm | HEUR:Exploit.RTF.T1221.gen |
filetype_details | Rich Text Format data, version 1, unknown character set | filename | Ops Afg post 9-11.doc |