9bbc73e7a3ff9e02bb72e6f4f1cbdddc0a479f9d76e68118b54a89ce478ca1cd | Triage

Submit
Reports

Overview

overview

Static

static

8

f96bb6ad94...8.xlsb

windows7-x64

f96bb6ad94...8.xlsb

windows10-2004-x64

Sharing

General

Target

f96bb6ad94a93f11b7ee2573ca12fc59_JaffaCakes118
Size

108KB
Sample

240419-d71qaaff75
MD5

f96bb6ad94a93f11b7ee2573ca12fc59
SHA1

e01514e7fc0bcc63740b54f63a2aeb3f75ed3e58
SHA256

9bbc73e7a3ff9e02bb72e6f4f1cbdddc0a479f9d76e68118b54a89ce478ca1cd
SHA512

2ed952289ef716bb8a6401c4778d31bb5a72f87e26e59111de93cc68db2c2f56b980882fe99380fa6137bd71432a298174f1f0de83d9729440a6a08b3d4980e9
SSDEEP

3072:oUpuwTFU17LXELEi63LD6z2qoaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa3RY3Pj:oS9TY7mF67MoaaaaaaaaaaaaaaaaaaaI

Score

10^/10

macro xlm

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

f96bb6ad94a93f11b7ee2573ca12fc59_JaffaCakes118.xlsb

Resource

win7-20240221-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

f96bb6ad94a93f11b7ee2573ca12fc59_JaffaCakes118.xlsb

Resource

win10v2004-20240412-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  f96bb6ad94a93f11b7ee2573ca12fc59_JaffaCakes118
- Size
  
  108KB
- MD5
  
  f96bb6ad94a93f11b7ee2573ca12fc59
- SHA1
  
  e01514e7fc0bcc63740b54f63a2aeb3f75ed3e58
- SHA256
  
  9bbc73e7a3ff9e02bb72e6f4f1cbdddc0a479f9d76e68118b54a89ce478ca1cd
- SHA512
  
  2ed952289ef716bb8a6401c4778d31bb5a72f87e26e59111de93cc68db2c2f56b980882fe99380fa6137bd71432a298174f1f0de83d9729440a6a08b3d4980e9
- SSDEEP
  
  3072:oUpuwTFU17LXELEi63LD6z2qoaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa3RY3Pj:oS9TY7mF67MoaaaaaaaaaaaaaaaaaaaI
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy