Overview

overview

10

Static

static

8

4293980a40...18.doc

windows7-x64

10

4293980a40...18.doc

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4293980a40e32263689adc31d09586ba_JaffaCakes118

  • Size

    67KB

  • Sample

    240514-xh9fnsba4z

  • MD5

    4293980a40e32263689adc31d09586ba

  • SHA1

    0410bb681609ba26a916cf924cd5ec9f952d7ddb

  • SHA256

    7a7a96dea01318105b9ca22bb0e951f9475c1d0573fcbeabc33e10fd1ab56c41

  • SHA512

    0e0deeb21e3b5b60fbaa8f62b0a054e1de90f9f8f806b7fcf77e688c23830e0f19fe743b5db81bdb875afd78d7d5bcfe5607d67aebc547ee8193f1cfc980445c

  • SSDEEP

    768:Q/ZVucRFoqkp59YBvLdTv9ReVi4eFov5UHRFBt+1o9KPVORZ1u2O7VQnoL:EZocn1kp59gxBK85fBt+a9KMRvi

Score
10/10
macro

Malware Config

Targets

    • Target

      4293980a40e32263689adc31d09586ba_JaffaCakes118

    • Size

      67KB

    • MD5

      4293980a40e32263689adc31d09586ba

    • SHA1

      0410bb681609ba26a916cf924cd5ec9f952d7ddb

    • SHA256

      7a7a96dea01318105b9ca22bb0e951f9475c1d0573fcbeabc33e10fd1ab56c41

    • SHA512

      0e0deeb21e3b5b60fbaa8f62b0a054e1de90f9f8f806b7fcf77e688c23830e0f19fe743b5db81bdb875afd78d7d5bcfe5607d67aebc547ee8193f1cfc980445c

    • SSDEEP

      768:Q/ZVucRFoqkp59YBvLdTv9ReVi4eFov5UHRFBt+1o9KPVORZ1u2O7VQnoL:EZocn1kp59gxBK85fBt+a9KMRvi

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks