b8683c5502f50bc3553fc514bcdc70eeab797425911d1c3b457795e36b69ada8[.]zip

General

Target

b8683c5502f50bc3553fc514bcdc70eeab797425911d1c3b457795e36b69ada8.zip
Size

158KB
MD5

a05fcf51eddd97a40293b5f56ef2b732
SHA1

1c9764c3b13d0421abec54b54713dd61380592f7
SHA256

e0be815093a9c9e63ed1b13d3e983e45b96aa6205da9292855622b59224fd935
SHA512

316525880cce834b61670f6121d26e8b2e5940890f2aee4b46ad3d0a35310801708d13e5967be3054fda0931ae69d6a8b4bf114715eaefe5bc36685a6144f6e4
SSDEEP

3072:89m+edYCenfionhZcbncFW0neb3ELKMRle3Ackd13aFQD6BsSoXuhB:8A5YCkhZcbncY0eLEF3KAcSVD6BAuX

Score

8^/10

Office macro that triggers on suspicious action 1 IoCs

Office document macro which triggers in special circumstances - often malicious.

resource	yara_rule
static1/unpack002/RechnungScan 2023.10.03_1233.doc	office_macro_on_action

Suspicious Office macro 1 IoCs

Office document equipped with macros.

resource
static1/unpack002/RechnungScan 2023.10.03_1233.doc

b8683c5502f50bc3553fc514bcdc70eeab797425911d1c3b457795e36b69ada8.zip
.zip

Password: infected
b8683c5502f50bc3553fc514bcdc70eeab797425911d1c3b457795e36b69ada8.zip
.zip

Password: infected
RechnungScan 2023.10.03_1233.doc
.doc windows office2003

ThisDocument

Module1