popup
Summary | ZeroBOX
  1. Home
  2. Result
  3. Report
  4. Detail Analysis

조선 시장 물가 분석(신의주).hwp

PS PostScript Lnk Format GIF Format MSOffice File HWP
  1. Resubmit sample
Category Machine Started Completed
FILE s1_win7_x6403_us Jan. 25, 2024, 1:53 p.m. Jan. 25, 2024, 1:55 p.m.
Size 66.5KB
Type Hangul (Korean) Word Processor File 5.x
MD5 e26422ba7e1eed4481e9389806e798c3
SHA256 b6e1351f1767a2cacb3fc7515f0a67691bbd8b9274a26c2953ba898ba879ebea
CRC32 FDEE317C
ssdeep 1536:Mil5mCJP+/UR4jLClxvBRaBOJjHXjMkgbGNZYB1JA:MilcCF+sR4jLAUOtHzMkyk8
Yara
  • Microsoft_Office_File_Zero - Microsoft Office File
  • HWP_file_format - HWP Document File
  • Win32_HWP_PostScript_Zero - Detect a HWP with embedded Post Script code

Name Response Post-Analysis Lookup
No hosts contacted.
IP Address Status Action
No hosts contacted.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Time & API Arguments Status Return Repeated

IsDebuggerPresent

 0 0
file C:\Users\test22\AppData\Roaming\HNC\Office\Recent\Temp.folder.lnk
file C:\Users\test22\AppData\Roaming\HNC\Office\Recent\조선 시장 물가 분석(신의주).hwp.lnk
file C:\Users\test22\AppData\Roaming\HNC\Office\Recent\Temp.folder.lnk
file C:\Users\test22\AppData\Roaming\HNC\Office\Recent\조선 시장 물가 분석(신의주).hwp.lnk
Skyhigh RDN/Generic Downloader.x
ALYac Exploit.HWP.Agent
Symantec Trojan.Gen.MBT
ESET-NOD32 HWP/TrojanDownloader.Agent.N
TrendMicro-HouseCall Trojan.W97M.FRS.VSNW09A24
McAfee RDN/Generic Downloader.x
Avast Other:Malware-gen [Trj]
TrendMicro Trojan.W97M.FRS.VSNW09A24
Google Detected
Microsoft Trojan:O97M/Phish!MSR
ViRobot HWP.S.Agent.68096
Varist HWP/Expl.E
AhnLab-V3 Downloader/HWP.Agent
Tencent Win32.Trojan-Downloader.Der.Eplw
AVG Other:Malware-gen [Trj]