PO_371_50_37[.]xls | Triage

Sharing

General

Target

PO_371_50_37.xls
Size

396KB
MD5

dd94071fbb3459fb33069767de531441
SHA1

5203fa48ba79e3626bcec7ecf3c1838c484760ef
SHA256

d7a4a7c4bced1b93c3bf1252ef98ccfd1129452a675633349f5f98d3c968df37
SHA512

d96e8fb052ffadee0961ff6fca2649066a81a02a3a4dee763e89d98b77cbd11faf15fa8a83b3c72e68d02284ee7dcd4a93f675a3f1da87a89d4c5f6a89fd64d8

Score

8^/10

macro macro_on_action

Malware Config

Signatures

Office macro that triggers on suspicious action 1 IoCs

Office document macro which triggers in special circumstances - often malicious.

macro macro_on_action

Processes:

resource	yara_rule
sample	office_macro_on_action

Suspicious Office macro 1 IoCs
Office document equipped with macros.
macro

Processes:

resource yara_rule

sample office_macros

Files

PO_371_50_37.xls
.xls windows office2003

ThisWorkbook

Sheet1

yGGsvaB

Sheet2