Malware analysis
The Case of Suspicious Email
An employee receives an email with an attachment named "search.rar." The email seems suspicious to the employee, so they forward the attachment to the IT department's Forensic team for further investigation. The forensic analyst downloads the attachment and extracts it for analysis. Upon examination, they discover that the file contains malware. Find out what interesting they find out.
Question 1.
what is the hash(md5) of this malware?
Note:- Do not run the malware file on your personal PC. Always run it in a controlled environment, such as a virtual machine (e.g., VirtualBox or VMware) or any other sandbox.
Question 2.
How many library(dll) are there in it?
Question 3.
what is the Creation year of this malware?
Question 4.
It is a Malware or Prankware
Question 5.
Which type of analysis more suitable for examine this file "static analysis, dynamic analysis or both" on the basis of above question