lK_1403[.]zip | Triage

Sharing

General

Target

lK_1403.zip
Size

713KB
MD5

133b763987a1a6a16e29b5406c1c3794
SHA1

80848aa72fc29737898fc267702c51413636dd3b
SHA256

51fd7a4975410870bf3d63839671d83305d79f59f8f3a8cffa78498fbe8d7aa3
SHA512

b70635110ddc25ac5629186d27300e2b3590521f6937694345e53ad5e9032e7ca5596ea6a37ef6964b3b2361b7bcfe3f99583404a88da0409023511c2744f622
SSDEEP

6144:cwZnDlMy6O3qKmCRUe1B5uLqcHfVDNUV3nJGM+BTu:vtDlb6IqXCRUe1BTcH8VIM+Vu

Score

8^/10

macro macro_on_action

Malware Config

Signatures

Office macro that triggers on suspicious action 1 IoCs

Office document macro which triggers in special circumstances - often malicious.

macro macro_on_action

Processes:

resource	yara_rule
static1/unpack001/lK_1403.doc	office_macro_on_action

Suspicious Office macro 1 IoCs
Office document equipped with macros.
macro

Processes:

resource

static1/unpack001/lK_1403.doc

Files

lK_1403.zip
.zip
lK_1403.doc
.doc windows office2003

ThisDocument

Module1