popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

조선 시장 물가 분석(회령).hwp

PS PostScript Lnk Format GIF Format MSOffice File HWP
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Jan. 25, 2024, 1:51 p.m. Jan. 25, 2024, 1:53 p.m.
Size 71.0KB
Type Hangul (Korean) Word Processor File 5.x
MD5 54b3aa4b83e410f4bf28368d59a0711b
SHA256 d1f81eaf48b878479065d9f04a252edca193bb0ffdd7734daad2103c17a637e9
CRC32 7651198B
ssdeep 1536:nPnEuKzbzkusKuYuPmAs6/COJjHXjMkgbGNZYB16:fEdYuswueAp/COtHzMkyk86
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
  • HWP_file_format - HWP Document File
  • Win32_HWP_PostScript_Zero - Detect a HWP with embedded Post Script code

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Time & API Arguments Status Return Repeated

IsDebuggerPresent

 0 0
file C:\Users\test22\AppData\Roaming\HNC\Office\Recent\Temp.folder.lnk
file C:\Users\test22\AppData\Roaming\HNC\Office\Recent\조선 시장 물가 분석(회령).hwp.lnk
file C:\Users\test22\AppData\Roaming\HNC\Office\Recent\Temp.folder.lnk
file C:\Users\test22\AppData\Roaming\HNC\Office\Recent\조선 시장 물가 분석(회령).hwp.lnk
Skyhigh Artemis
ALYac Exploit.HWP.Agent
Symantec Trojan.Mdropper
ESET-NOD32 HWP/TrojanDownloader.Agent.N
TrendMicro-HouseCall Trojan.W97M.FRS.VSNW09A24
Avast Other:Malware-gen [Trj]
TrendMicro Trojan.W97M.FRS.VSNW09A24
Google Detected
Microsoft Trojan:O97M/Phish!MSR
ViRobot HWP.S.Agent.72704
GData Generic.Trojan.Agent.5J5X1P
Varist HWP/Expl.D
AhnLab-V3 Downloader/HWP.Agent
Tencent Win32.Trojan-Downloader.Der.Rimw
AVG Other:Malware-gen [Trj]