Malicious Javascript with Doubleclick Tracking

Starting to see targeted attacks today. Normally we don't see this but thought it may be useful to somebody so you can keep from getting hit. We noted that whomever sent this is using doubleclick to track infections and some clever javascript.

IOCS:

68be3ca5437434c4ff318db0130bad08d3eeffea0e7d6b665217a16365d2099a
94d579f3eaedc0dc4c22508f15e5782131c0808db063d6bcf090a790cb5cbf86
7b029b7d58e4b97fa67aafe24ba3a3f3943e6d482cd49dcc7eb25c87e5fc2978
f63b544e7f51e2ff73799676c8c38a1b