Overview

overview

10

Static

static

1

68b7e1b884...18.rtf

windows7-x64

1

68b7e1b884...18.rtf

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    68b7e1b88443f19d5f4c81c3a046f364_JaffaCakes118

  • Size

    430KB

  • Sample

    240522-1ge28ahg88

  • MD5

    68b7e1b88443f19d5f4c81c3a046f364

  • SHA1

    9c7b786ca2b65dca55be9d38118673980885e595

  • SHA256

    6f71e7fb265201ec40a614d5739285bf90347be9acb8eb73102a0cd0e0924c3d

  • SHA512

    89a5cc2564f8ed6194cdb4ebd99a56882933bb1e2da845b9e973c29d7bb1e9d978b8778df89731d0a2fc80ba157d754ff6e70323f51a398f3ad9d284f412aadf

  • SSDEEP

    6144:Wl3ld+Wzl3ld+Wul3ld+Wsl3ld+WAl3ld+WW1:WplTzplTuplTsplTAplTw

Score
10/10

Malware Config

Targets

    • Target

      68b7e1b88443f19d5f4c81c3a046f364_JaffaCakes118

    • Size

      430KB

    • MD5

      68b7e1b88443f19d5f4c81c3a046f364

    • SHA1

      9c7b786ca2b65dca55be9d38118673980885e595

    • SHA256

      6f71e7fb265201ec40a614d5739285bf90347be9acb8eb73102a0cd0e0924c3d

    • SHA512

      89a5cc2564f8ed6194cdb4ebd99a56882933bb1e2da845b9e973c29d7bb1e9d978b8778df89731d0a2fc80ba157d754ff6e70323f51a398f3ad9d284f412aadf

    • SSDEEP

      6144:Wl3ld+Wzl3ld+Wul3ld+Wsl3ld+WAl3ld+WW1:WplTzplTuplTsplTAplTw

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks