813c8b8b43be5a928a5cd841bea08d7d5453ab8a1196e3c81abd7a144027247b[.]zip

General

Target

813c8b8b43be5a928a5cd841bea08d7d5453ab8a1196e3c81abd7a144027247b.zip
Size

544KB
MD5

2b59c9eadc3e1849142a65681724c0be
SHA1

1f9f0894254bf27a31c072a90581fdac97e8f5ea
SHA256

4106b47d96cbed1280286af9750c89f7f674f6c067227c2dce38bf7e5572401d
SHA512

92ec66dcd0b94c9b4ec235a9eccf5e51037f675aee4fad10341ad7e25768cd0460b915c2c492b4980cc7b4285092930aaf683e2be61c8a8219a87a9fb3a376ab
SSDEEP

12288:xP5nol2dnRC7xQMXBILPU3MJdogJUzQlglcvFz:xPmMnRYxZQ8cro0UUl+mFz

Score

8^/10

Office macro that triggers on suspicious action 1 IoCs

Office document macro which triggers in special circumstances - often malicious.

resource	yara_rule
static1/unpack001/813c8b8b43be5a928a5cd841bea08d7d5453ab8a1196e3c81abd7a144027247b.doc	office_macro_on_action

Suspicious Office macro 1 IoCs

Office document equipped with macros.

resource
static1/unpack001/813c8b8b43be5a928a5cd841bea08d7d5453ab8a1196e3c81abd7a144027247b.doc

813c8b8b43be5a928a5cd841bea08d7d5453ab8a1196e3c81abd7a144027247b.zip
.zip

Password: infected
813c8b8b43be5a928a5cd841bea08d7d5453ab8a1196e3c81abd7a144027247b.doc
.doc windows office2003

ThisDocument