44e593c98acaf52aee91c09fe00fa196668351783fc8a623fc1da5325635130f[.]zip

General

Target

44e593c98acaf52aee91c09fe00fa196668351783fc8a623fc1da5325635130f.zip
Size

11KB
MD5

31f1b8fea2aef6fb629707e75fbe942d
SHA1

969161f0e7a2743b279a8f62a5f99a6312397e78
SHA256

8e6eb738678c96e30e5411408c9f5e6640c7bf7d645ac796ecd5c2cb7607e1c7
SHA512

911971d264ddedd264070ad2cd7740e88b32132dea4eb3624e0e6e2bcda9a5f91affc74330b0446bc510d87a93c1fe38cd8fa65442ac36a0581232251b848990
SSDEEP

192:1Fv4KL8Enx1pdPGjamOgaTlvjntxmCrjpDOG1Y42OyS6fayV9ZH5:XvbXx1pdPGOmO/bnDmCrTu4+S8BvZH5

Score

8^/10

Office macro that triggers on suspicious action 1 IoCs

Office document macro which triggers in special circumstances - often malicious.

resource	yara_rule
static1/unpack001/44e593c98acaf52aee91c09fe00fa196668351783fc8a623fc1da5325635130f.doc	office_macro_on_action

Suspicious Office macro 1 IoCs

Office document equipped with macros.

resource
static1/unpack001/44e593c98acaf52aee91c09fe00fa196668351783fc8a623fc1da5325635130f.doc

44e593c98acaf52aee91c09fe00fa196668351783fc8a623fc1da5325635130f.zip
.zip

Password: infected
44e593c98acaf52aee91c09fe00fa196668351783fc8a623fc1da5325635130f.doc
.doc windows office2003

ThisDocument

NewMacros