Overview

overview

10

Static

static

8

Expo Lists.doc

windows7-x64

10

Expo Lists.doc

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    Expo Lists.zip

  • Size

    657KB

  • MD5

    d595b4aca0de3a495f5487275bfdfdc6

  • SHA1

    d63376af0ef897b32c355ad12379bef3c051ae62

  • SHA256

    842fd69a976720aa0c81d3167ab7674702ef31ca7964cf5ebbedbaec79477f9d

  • SHA512

    79b688d22851701a645a34e6b06f6cea1e9ae769e7d1797fb20c52d8cd540483cb95060b0f8522eacfd872480eae141da30b1da5c7e9349da1ca873b33a34256

  • SSDEEP

    3072:G1lsI//z4a/hGS0NclN3U8XKp5ZuoWkQQhl0GEzal3Cb:G12c/z4a5GLNIp1WMkd3tCb

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • Expo Lists.zip
    .zip
  • Expo Lists.doc
    .doc windows office2003

    ThisDocument

    Module1