DATOS_0973[.]zip | Triage

Sharing

General

Target

DATOS_0973.zip
Size

680KB
MD5

0831f6ddd0519335b88102ded2eaa00f
SHA1

0f1278a9147b3e515a8ae5d496b536b88dd6c7d1
SHA256

41d18cf14145a2437afb9d093abec8ac4297cd06f7d56992f5cee74ff4d596f2
SHA512

b03e2c9eb7c65756afc5968ff2f83d0929352cb74479e8fe3502f40bd6652fe9208e5f842d5379a206bd91b57fd2c850e4e590f3de227f0501d6e48a37009160
SSDEEP

3072:9JPwOBqguhRok0EOsHYQLMTwyOy2w4OLWxKJ5SuNVWla34:zjTuh1OVQTy/LWq7WlaI

Score

8^/10

macro macro_on_action

Malware Config

Signatures

Office macro that triggers on suspicious action 1 IoCs

Office document macro which triggers in special circumstances - often malicious.

macro macro_on_action

Processes:

resource	yara_rule
static1/unpack001/DATOS_0973.doc	office_macro_on_action

Suspicious Office macro 1 IoCs
Office document equipped with macros.
macro

Processes:

resource

static1/unpack001/DATOS_0973.doc

Files

DATOS_0973.zip
.zip
DATOS_0973.doc
.doc windows office2003

ThisDocument

Module1