General

  • Target

    522e4a7354d60993df6a64dc2664a28e_JaffaCakes118

  • Size

    220KB

  • Sample

    240518-aencpsac9s

  • MD5

    522e4a7354d60993df6a64dc2664a28e

  • SHA1

    8302b5ec158e4886abb809f198ef18c4a433f856

  • SHA256

    372366545f446662beed555a9f585de52020235dc9f375fcce9329c694a3bd19

  • SHA512

    25797fde150b280516bdd6414fe178c9562a335ccd4b836dbfd4437cb795745cb5cf316062354bddcd3512554373679582bc4cd691b1aafc06c8a185e472b921

  • SSDEEP

    3072:1H9nBf4SuEjAhmAMOc7kkkko1rkGuF3tBInxGGq5MyXJm9YBmjDJ04Jt:1FVeEsjdXRC3jexGG67YWof2U

Score
10/10

Malware Config

Targets

    • Target

      522e4a7354d60993df6a64dc2664a28e_JaffaCakes118

    • Size

      220KB

    • MD5

      522e4a7354d60993df6a64dc2664a28e

    • SHA1

      8302b5ec158e4886abb809f198ef18c4a433f856

    • SHA256

      372366545f446662beed555a9f585de52020235dc9f375fcce9329c694a3bd19

    • SHA512

      25797fde150b280516bdd6414fe178c9562a335ccd4b836dbfd4437cb795745cb5cf316062354bddcd3512554373679582bc4cd691b1aafc06c8a185e472b921

    • SSDEEP

      3072:1H9nBf4SuEjAhmAMOc7kkkko1rkGuF3tBInxGGq5MyXJm9YBmjDJ04Jt:1FVeEsjdXRC3jexGG67YWof2U

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

MITRE ATT&CK Enterprise v15

Tasks