Managed XDR

doc2.doc — malware analysis report

File info

Filename: doc2.doc
File type: Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, Code page: 1252, Author: Offsec, Template: Normal, Last Saved By: Offsec, Revision Number: 1, Name of Creating Application: Microsoft Office Word, Create Time/Date: Sat Jun 13 15:27:00 2026, Last Saved Time/Date: Sat Jun 13 15:27:00 2026, Number of Pages: 1, Number of Words: 0, Number of Characters: 0, Security: 0
File size: 35 KB
First seen: 2026-06-13 17:00
Last seen: 2026-06-21 10:56

w10/x64 en

T1064 office_macros_nulled: The document contains a macro with removed source code

T1064 office_macros_suspicious: Document contains suspicious macro

T1064 office_macros: The document contains macroses (total: 2)

T1064 office_macros_autoexec: The document contains an auto-start macro

T1064 office_macros_nulled: The document contains a macro with removed source code

T1064 office_macros_suspicious: Document contains suspicious macro

T1564 office_vba_stomping: VBA Stomping was detected in the document (the VBA source code and P-code are different)

T1064 office_macros: The document contains macroses (total: 2)

T1064 office_macros_autoexec: The document contains an auto-start macro

no_graphical_activity: No graphic activity

office_summary: The document contains suspicious metadata

yara_rules: Static rules

Managed XDR