Malspam Campaign Targets Banks Using Microsoft Publisher

1. Malspam Campaign Targets Banks Using Microsoft Publisher
2.  
3. Indicators of Compromise(IOCs)
4.  
5. PUB File:
6.  
7. MD5 5fdeaa5e62fabc9933352efe016f1565
8. SHA1 7141932617f4718521bda0a960a036114769872d
9.  
10.  
11. File from URL(hxxp://f79q.com/aa1):
12.  
13. MD5 be6a53fbee5529a1cdbdd4345c191dfa
14. SHA1 985b44e7280b0293d08982c466d95ed86452fb73
15.  
16. Unpacked file (FlawwedAmmy RAT)
17.  
18. MD5 bacd1120ad0918b81d98de9b9acb69ce
19. SHA1 b65c2fc63ff2db8ed69ec7e856702f85f5af319e