General
-
Target
522e4a7354d60993df6a64dc2664a28e_JaffaCakes118
-
Size
220KB
-
Sample
240518-aencpsac9s
-
MD5
522e4a7354d60993df6a64dc2664a28e
-
SHA1
8302b5ec158e4886abb809f198ef18c4a433f856
-
SHA256
372366545f446662beed555a9f585de52020235dc9f375fcce9329c694a3bd19
-
SHA512
25797fde150b280516bdd6414fe178c9562a335ccd4b836dbfd4437cb795745cb5cf316062354bddcd3512554373679582bc4cd691b1aafc06c8a185e472b921
-
SSDEEP
3072:1H9nBf4SuEjAhmAMOc7kkkko1rkGuF3tBInxGGq5MyXJm9YBmjDJ04Jt:1FVeEsjdXRC3jexGG67YWof2U
Behavioral task
behavioral1
Sample
522e4a7354d60993df6a64dc2664a28e_JaffaCakes118.doc
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
522e4a7354d60993df6a64dc2664a28e_JaffaCakes118.doc
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
522e4a7354d60993df6a64dc2664a28e_JaffaCakes118
-
Size
220KB
-
MD5
522e4a7354d60993df6a64dc2664a28e
-
SHA1
8302b5ec158e4886abb809f198ef18c4a433f856
-
SHA256
372366545f446662beed555a9f585de52020235dc9f375fcce9329c694a3bd19
-
SHA512
25797fde150b280516bdd6414fe178c9562a335ccd4b836dbfd4437cb795745cb5cf316062354bddcd3512554373679582bc4cd691b1aafc06c8a185e472b921
-
SSDEEP
3072:1H9nBf4SuEjAhmAMOc7kkkko1rkGuF3tBInxGGq5MyXJm9YBmjDJ04Jt:1FVeEsjdXRC3jexGG67YWof2U
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Blocklisted process makes network request
-