Cryptam


Recent document malware detections. This list is delayed by 5 days.

MD5filenamesizeseverityhas_exekey_lenrol
29f3d23cd58a1b1d1b2e8a7d240812f7 view report b8e9aca1729533db558e1fad0aa809dbfbf6b6d67d2d6d14c153a1a00dee7b89_softnigger.doc 450560 10 X 0 0
24654: string.This program cannot be run in DOS mode
dropped.file exe a5855dfb012304498d1097d7ebc4446e / 425984 bytes / @ 24576
1017cc360b54f4bd41a2b45cc5190ad1 view report 79a855b481acf1dacc62d18822b84a53d3e6aa2d56a55a3cb8f029993ad16b7f_loan.doc 978944 30 X 0 0
24654: string.This program cannot be run in DOS mode
928280: string.CloseHandle
928732: string.KERNEL32
dropped.file exe b43f9b4a62a227abc21f92b620b7112a / 954368 bytes / @ 24576
1017cc360b54f4bd41a2b45cc5190ad1 view report 79a855b481acf1dacc62d18822b84a53d3e6aa2d56a55a3cb8f029993ad16b7f_loan.doc 978944 30 X 0 0
24654: string.This program cannot be run in DOS mode
928280: string.CloseHandle
928732: string.KERNEL32
dropped.file exe b43f9b4a62a227abc21f92b620b7112a / 954368 bytes / @ 24576
0cad2f6d7749a439e2ccd057d472564c view report 5204f349bf2a25342137ca06ec178a800946b720434f554a65cd9b8801dab7bd_Complaint.doc 58368 32 X 0 0
55066: suspicious.office Visual Basic macro
20619: exploit.office VB Macro auto execute
36555: string.CreateProcessA
0cad2f6d7749a439e2ccd057d472564c view report 5204f349bf2a25342137ca06ec178a800946b720434f554a65cd9b8801dab7bd_Complaint.doc 58368 32 X 0 0
55066: suspicious.office Visual Basic macro
20619: exploit.office VB Macro auto execute
36555: string.CreateProcessA
6bf657327827fd34fd2214a0cbb73c3c view report c98855eeeb4096b11839d9a90a6d1cde97df3cb43821eaeab6059ae639dc039b_word_sample_20180903065545.doc 32256 72 X 0 0
28693: exploit.office embedded Visual Basic write to file Scripting.FileSystemObject
28904: exploit.office embedded Visual Basic execute shell command Wscript.Shell
23766: suspicious.office Visual Basic macro
10666: exploit.office VB Macro auto execute
28882: string.vbs WScript
6bf657327827fd34fd2214a0cbb73c3c view report c98855eeeb4096b11839d9a90a6d1cde97df3cb43821eaeab6059ae639dc039b_word_sample_20180903065545.doc 32256 72 X 0 0
28693: exploit.office embedded Visual Basic write to file Scripting.FileSystemObject
28904: exploit.office embedded Visual Basic execute shell command Wscript.Shell
23766: suspicious.office Visual Basic macro
10666: exploit.office VB Macro auto execute
28882: string.vbs WScript
26fa8864e14aa24ceff9584f2ed8cccc view report f09c6fa0b3ec0eab1e2063d230f90841a147bbff9cf9bf2359ab050376d867df_selfinjectazor.doc 544768 10 X 0 0
24654: string.This program cannot be run in DOS mode
dropped.file exe 8d65f322f55635977b79bde0586bad1c / 520192 bytes / @ 24576
26fa8864e14aa24ceff9584f2ed8cccc view report f09c6fa0b3ec0eab1e2063d230f90841a147bbff9cf9bf2359ab050376d867df_selfinjectazor.doc 544768 10 X 0 0
24654: string.This program cannot be run in DOS mode
dropped.file exe 8d65f322f55635977b79bde0586bad1c / 520192 bytes / @ 24576
b241bc5eee6dc406b7e97a1ede510fd8 view report c5d645ff140d7492563fa7f2912eb0793977730dfd470c8209ddbfe0c03e1e9a_bamicryt.doc 421888 10 X 0 0
24654: string.This program cannot be run in DOS mode
dropped.file exe 6e4e96ce0a92308be804e359f6d21e27 / 397312 bytes / @ 24576
b241bc5eee6dc406b7e97a1ede510fd8 view report c5d645ff140d7492563fa7f2912eb0793977730dfd470c8209ddbfe0c03e1e9a_bamicryt.doc 421888 10 X 0 0
24654: string.This program cannot be run in DOS mode
dropped.file exe 6e4e96ce0a92308be804e359f6d21e27 / 397312 bytes / @ 24576
cd23b9710a6f3bddf569663eca410316 view report 193e8868bf9fbb4fc5edb8a0e2400796ee644114d8a401c8550ce0aa958665ac_order2.doc 438272 10 X 0 0
24654: string.This program cannot be run in DOS mode
dropped.file exe 05b3b1770d7997051d5e86e26ee273c1 / 413696 bytes / @ 24576
cd23b9710a6f3bddf569663eca410316 view report 193e8868bf9fbb4fc5edb8a0e2400796ee644114d8a401c8550ce0aa958665ac_order2.doc 438272 10 X 0 0
24654: string.This program cannot be run in DOS mode
dropped.file exe 05b3b1770d7997051d5e86e26ee273c1 / 413696 bytes / @ 24576
a77ac5ed29a87244fbb943f90017a5f7 view report e97c7f8ec22eb1e9312d4d33d9d412a2d42b294e5285b29cf085eae9a23b521d_word_sample_20180820031943.doc 32256 72 X 0 0
28693: exploit.office embedded Visual Basic write to file Scripting.FileSystemObject
28904: exploit.office embedded Visual Basic execute shell command Wscript.Shell
23766: suspicious.office Visual Basic macro
10666: exploit.office VB Macro auto execute
28882: string.vbs WScript
a77ac5ed29a87244fbb943f90017a5f7 view report e97c7f8ec22eb1e9312d4d33d9d412a2d42b294e5285b29cf085eae9a23b521d_word_sample_20180820031943.doc 32256 72 X 0 0
28693: exploit.office embedded Visual Basic write to file Scripting.FileSystemObject
28904: exploit.office embedded Visual Basic execute shell command Wscript.Shell
23766: suspicious.office Visual Basic macro
10666: exploit.office VB Macro auto execute
28882: string.vbs WScript