Overview

overview

10

Static

static

8

52924bf155...8.docm

windows7-x64

10

52924bf155...8.docm

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    52924bf155803608b04f807726d56d74_JaffaCakes118

  • Size

    68KB

  • Sample

    240518-cerfgafa67

  • MD5

    52924bf155803608b04f807726d56d74

  • SHA1

    f2687578ccb884966553fb6f64446aceb1f08add

  • SHA256

    f8ef462e7b340fb3cb75ff527f6b994355e6eed794d4b2852f5544ccca4c5124

  • SHA512

    613e1a62b54026160a1d8de3cfe0be3d4098aeffa9c375fe50ea2ac2b0e1bb94849107f0b0a432253d272b975449a96114311e8ecb07e7c053c07f9929707de4

  • SSDEEP

    1536:dmwHPPcqWIbDyNhlXP+uXEAOcdaXobhbaF6sTNksgDB26:7PIoIhhP+uXSyboTksgDBB

Score
10/10
macro

Malware Config

Targets

    • Target

      52924bf155803608b04f807726d56d74_JaffaCakes118

    • Size

      68KB

    • MD5

      52924bf155803608b04f807726d56d74

    • SHA1

      f2687578ccb884966553fb6f64446aceb1f08add

    • SHA256

      f8ef462e7b340fb3cb75ff527f6b994355e6eed794d4b2852f5544ccca4c5124

    • SHA512

      613e1a62b54026160a1d8de3cfe0be3d4098aeffa9c375fe50ea2ac2b0e1bb94849107f0b0a432253d272b975449a96114311e8ecb07e7c053c07f9929707de4

    • SSDEEP

      1536:dmwHPPcqWIbDyNhlXP+uXEAOcdaXobhbaF6sTNksgDB26:7PIoIhhP+uXSyboTksgDBB

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Drops startup file

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks