PO - P23-1035[.]xls

General

Target

PO - P23-1035.xls
Size

1.4MB
MD5

6fac9efd4eb61ffd9e743b63fd8c62d7
SHA1

ba6252281f9a12dd3e7b08335868c93608158b6b
SHA256

c8d9e58a03dfa83e3c0afedf734b2131f696a02e4bc242fd697179f3a3bb9d15
SHA512

230a675d02ad21a23583a281df4a5ad1fdb1a347203f80a62b1897704125eed781cb62b5192d0c8c47b3b5be0f1157365dd4f9fc10069b62798c64f870e25ea1
SSDEEP

24576:eLKqiWQmmav30xXBTWQmmav30xfxWQmmav30xHnBLUWQmmav30xA63P080AGko4:eLKQQmmQ30JAQmmQ30NAQmmQ301nppQp

Score

5^/10

macro

Document created with cracked Office version 1 IoCs

Office document contains Grizli777 string known to be caused by using a cracked version of the software.

resource	yara_rule
sample	grizli777_cracked_office