General
-
Target
fdc613b4e38cf07c3e216091fa95e74a_JaffaCakes118
-
Size
365KB
-
Sample
240420-17x1qabh9x
-
MD5
fdc613b4e38cf07c3e216091fa95e74a
-
SHA1
4aba7df3744afceaeb81f48c7f0127fdbfa7890e
-
SHA256
35b2f2df2076eeebc4341d52faa0216ca54a43b033f8d83b49bc8b0a9afb51f8
-
SHA512
e7436154d1d8ef59b4cfd55528452bd2112b3524bc6e2ddc3f0bbfbb48ac21e230d92c2fdbbe48ebd828748e5791ee8a25f663e3d0babc9565d2a0ada64d9ad4
-
SSDEEP
3072:RBui3CfCj7fA2iw/hPchqBB4pDUZkzjHinw8J5GAzyd5IWVbrzQ7IhkDFrugJtXu:REaEGywcqBapDUuvL8J5G4KCKW
Behavioral task
behavioral1
Sample
fdc613b4e38cf07c3e216091fa95e74a_JaffaCakes118.xls
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
fdc613b4e38cf07c3e216091fa95e74a_JaffaCakes118.xls
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
fdc613b4e38cf07c3e216091fa95e74a_JaffaCakes118
-
Size
365KB
-
MD5
fdc613b4e38cf07c3e216091fa95e74a
-
SHA1
4aba7df3744afceaeb81f48c7f0127fdbfa7890e
-
SHA256
35b2f2df2076eeebc4341d52faa0216ca54a43b033f8d83b49bc8b0a9afb51f8
-
SHA512
e7436154d1d8ef59b4cfd55528452bd2112b3524bc6e2ddc3f0bbfbb48ac21e230d92c2fdbbe48ebd828748e5791ee8a25f663e3d0babc9565d2a0ada64d9ad4
-
SSDEEP
3072:RBui3CfCj7fA2iw/hPchqBB4pDUZkzjHinw8J5GAzyd5IWVbrzQ7IhkDFrugJtXu:REaEGywcqBapDUuvL8J5G4KCKW
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Deletes itself
-