Report - 2E0ECB2F.Png

Malicious Library CAB MSOffice File

ScreenShot

Info
Location map


Created	2023.07.17 16:32	Machine	s1_win7_x6401
Filename	2E0ECB2F.Png
Type	Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, MSI Installer, Last P
AI Score	Not founds	Behavior Score	1.2
ZERO API	file : mailcious
VT API (file)	44 detected (Agentb, GenericKD, Bulz, VBScript, Save, Eldorado, multiple detections, R002H06BC22, DirtyMoe, Malicious, score, kkyd, PurpleFox, CLASSIC, Mdrop, Malware@#rpgmzhl7y5ey, Packed2, Convagent, FUPORFLEX, SMYEBDR, GenericRXOX, VMProtect, jktso, ASMalwS, kcloud, GenericMC, CVE-2017-1188, Detected, GenericRXAA, ai score=81, BScope, susgen, PossibleThreat, ZedlaF, rG4@aWpFvhd)
md5	f725bab929df4fe2626849ba269b7fcb
sha256	0a970e58599c403de3ef186fff03565913e47b5c22f9bdf55b84a9f497b10520
ssdeep	24576:y0uDXX4HK04BMeRocDP1Nc076i9aJjgDyk7TS4MclFdBbfYNn+Nnnm6ByMEUT:y9XIri5ood7FEJ8O6FlFdB0N+Nnnm6U4
imphash
impfuzzy

Network IP location

Signature (1cnts)

Level	Description
danger	File has been identified by 44 AntiVirus engines on VirusTotal as malicious

Rules (3cnts)

Level	Name	Description	Collection
watch	Malicious_Library_Zero	Malicious_Library	binaries (upload)
info	CAB_file_format	CAB archive file	binaries (upload)
info	Microsoft_Office_File_Zero	Microsoft Office File	binaries (upload)

Network (0cnts) ?

Request	CC	ASN Co	IP4	Rule ?	ZERO ?

Suricata ids

Similarity measure (PE file only) - Checking for service failure