This section deals with Word documents that contain malware samples. Please make sure that you have installed the Microsoft Office bundle program in your VM environment. Internet connection in your VM environment is also needed to make sure that the malware analysis can run smoothly in your VM environment.
We will submit a document dealing with Iran's Oil and Nuclear Situation. Perform the following steps:
Open a new tab in the terminal and type the following command:
$ python utils/submit.py --pla tform windows –package doc shares/Iran\'s\ Oil\ and\ Nuclear\ Situation.doc
In this case, the document is located inside the
shares
folder. You have to change the location based on where your document is.Please make sure you get a Success message like the preceding screenshot with task with ID 7 (it is the ID that depends on how many times you tried to submit a malware). Cuckoo will then start the latest snapshot of the virtual machine we've made. Windows will...