General
-
Target
f2f33efa9846db6f43a9dd085782e01b_JaffaCakes118
-
Size
210KB
-
Sample
240416-hvrztsbh27
-
MD5
f2f33efa9846db6f43a9dd085782e01b
-
SHA1
c3371f1ab559e0cf9892e624ef5eee2827f9a6ad
-
SHA256
22af401346ef1fcdc1d75b14c560c91d6032d75b8ffc56e4ab23aeb4e1429313
-
SHA512
1bba8684d94a90c76ff2d200d6f7e5f3bd1b47e3570cfa436d0593f92b7c1b637c0213c77f4bbfc415b50a82f874e2154d64b8b282f7b3aef9834d87c4a2f1e2
-
SSDEEP
3072:SzHSosHbMOD8srvN7gR9tfM529Q4JOKzNxqaq8wPg20x5aIdU2MMjJEefYWeriW:Sns7MOD8srVURv59QexqaFLLaL8ZYWu1
Behavioral task
behavioral1
Sample
f2f33efa9846db6f43a9dd085782e01b_JaffaCakes118.xlsm
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f2f33efa9846db6f43a9dd085782e01b_JaffaCakes118.xlsm
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
f2f33efa9846db6f43a9dd085782e01b_JaffaCakes118
-
Size
210KB
-
MD5
f2f33efa9846db6f43a9dd085782e01b
-
SHA1
c3371f1ab559e0cf9892e624ef5eee2827f9a6ad
-
SHA256
22af401346ef1fcdc1d75b14c560c91d6032d75b8ffc56e4ab23aeb4e1429313
-
SHA512
1bba8684d94a90c76ff2d200d6f7e5f3bd1b47e3570cfa436d0593f92b7c1b637c0213c77f4bbfc415b50a82f874e2154d64b8b282f7b3aef9834d87c4a2f1e2
-
SSDEEP
3072:SzHSosHbMOD8srvN7gR9tfM529Q4JOKzNxqaq8wPg20x5aIdU2MMjJEefYWeriW:Sns7MOD8srVURv59QexqaFLLaL8ZYWu1
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Blocklisted process makes network request
-