Overview

overview

10

Static

static

8

Sales-Invoice.doc

windows7-x64

10

Sales-Invoice.doc

windows10-2004-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    330c62fe6882b3fb742ca1658dbacc12_JaffaCakes118

  • Size

    70KB

  • MD5

    330c62fe6882b3fb742ca1658dbacc12

  • SHA1

    4799be7a453f474863961a32b75ef134e3d3290b

  • SHA256

    94ffbfc022864d305c972b0cc65fca5b7607b9e6f2b83ccc4792452825609e51

  • SHA512

    bebc7631d03afacc8c8ba871a94148769d29640dbc71c799a46910c42b83264799469a0fbdc89d30d01d7778712cfffcb661221fecea6d9d00daac4c5c043e41

  • SSDEEP

    1536:wPbcaG2+qFT5IquF/NjsHHuRx2HXubQsYFwEW9VAptX2/f39:8Qt2+qtKqsCHXubzYank/X2/f39

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • 330c62fe6882b3fb742ca1658dbacc12_JaffaCakes118
    .zip

    Password: infected

  • Sales-Invoice
    .doc windows office2003

    ThisDocument

    tjoBOjhrc

    LtBGCGKTX

    PjosAuOPV

    zENALwT