FILE_1603[.]zip | Triage

Sharing

General

Target

FILE_1603.zip
Size

756KB
MD5

f4bedc96fce8c1f1275098f1c6e312e7
SHA1

3bae94859ca10929ae65bb4ec3ef8d30ef0ab5ad
SHA256

c7c0a4c2ca13150807eb8110af4ff6229f6cd973d59f826047856bddefcfb88d
SHA512

d20bef61b08be91ac5d488b2c780516761bfa244f5a61e04cc9e0d206d3afadbc6d6a9f60cc2adccc71aed63254890469f2368bf8de1a327b19d319f1ebd7c51
SSDEEP

6144:EQpjt+nAXz13VqEXUDJc/5Rur4GlzRH2+:Plt+nAFIm5RolzRHn

Score

8^/10

macro macro_on_action

Malware Config

Signatures

Office macro that triggers on suspicious action 1 IoCs

Office document macro which triggers in special circumstances - often malicious.

macro macro_on_action

Processes:

resource	yara_rule
static1/unpack001/FILE_1603.doc	office_macro_on_action

Suspicious Office macro 1 IoCs
Office document equipped with macros.
macro

Processes:

resource

static1/unpack001/FILE_1603.doc

Files

FILE_1603.zip
.zip
FILE_1603.doc
.doc windows office2003

ThisDocument

Module1