General
-
Target
f2cc4812da526e8158c9cda5cd001a16_JaffaCakes118
-
Size
36KB
-
Sample
240416-f986jsae75
-
MD5
f2cc4812da526e8158c9cda5cd001a16
-
SHA1
94127e60bfd3dae7df2abc4c740f43b632e0da49
-
SHA256
1d8408eb9ee03a971c33994360fe9124df1976de5522abaec0863423eaf8fb33
-
SHA512
219af6d0c2e8587ae974d6282847104c7967132fe4b808ea3edba43a6319ed833a606ef1079f2cacb52bebb632120058d14f8eda8a80ea5eacd9dcc3e4df5592
-
SSDEEP
768:dPqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJ7veZdAen1JtbOl3JqhLwQ:Vok3hbdlylKsgqopeJBWhZFGkE+cL2N/
Behavioral task
behavioral1
Sample
f2cc4812da526e8158c9cda5cd001a16_JaffaCakes118.xls
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f2cc4812da526e8158c9cda5cd001a16_JaffaCakes118.xls
Resource
win10v2004-20240412-en
Malware Config
Extracted
https://skill.fashion/wp-data.php
https://syracuse.best/wp-data.php
Targets
-
-
Target
f2cc4812da526e8158c9cda5cd001a16_JaffaCakes118
-
Size
36KB
-
MD5
f2cc4812da526e8158c9cda5cd001a16
-
SHA1
94127e60bfd3dae7df2abc4c740f43b632e0da49
-
SHA256
1d8408eb9ee03a971c33994360fe9124df1976de5522abaec0863423eaf8fb33
-
SHA512
219af6d0c2e8587ae974d6282847104c7967132fe4b808ea3edba43a6319ed833a606ef1079f2cacb52bebb632120058d14f8eda8a80ea5eacd9dcc3e4df5592
-
SSDEEP
768:dPqNk3hbdlylKsgqopeJBWhZFGkE+cL2NdAJ7veZdAen1JtbOl3JqhLwQ:Vok3hbdlylKsgqopeJBWhZFGkE+cL2N/
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-