General
-
Target
6c096c3eaaef18e2aa6f77448d0c817f_JaffaCakes118
-
Size
134KB
-
Sample
240523-yaa4ksde5t
-
MD5
6c096c3eaaef18e2aa6f77448d0c817f
-
SHA1
49e383005457b8f986026a930b61673bdb8835e7
-
SHA256
f88f5fa0569a058bd1b561e5e02f28205f16d8616227caab99f8b7960c8630ed
-
SHA512
a56dd3f965f2b6d88ed8093698f14ed64c03dfe8504f91bf77b89c769ef1143b9cfaf7acacd1520ed4c953e07d1022e1610edb137afac9680fd8848c12d74cee
-
SSDEEP
1536:Vqr81ooMDS034nC54nZrL4AkiuAMOkEEW/yEbzvadf+a9GqFUYu:W8GhDS0o9zTGOZD6EbzCdMPYu
Behavioral task
behavioral1
Sample
6c096c3eaaef18e2aa6f77448d0c817f_JaffaCakes118.doc
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
6c096c3eaaef18e2aa6f77448d0c817f_JaffaCakes118.doc
Resource
win10v2004-20240508-en
Malware Config
Extracted
http://ominix.com/afd5jGQDbO
http://olsonfolding.com/wp-content/uploads/TgtXy54
http://kefalosrestaurant-lassi.com/ajPXwcKq5
http://progres-individuel-collectif.org/esNLr79klF
http://esfahanstore.com/PMgRgRaw
Targets
-
-
Target
6c096c3eaaef18e2aa6f77448d0c817f_JaffaCakes118
-
Size
134KB
-
MD5
6c096c3eaaef18e2aa6f77448d0c817f
-
SHA1
49e383005457b8f986026a930b61673bdb8835e7
-
SHA256
f88f5fa0569a058bd1b561e5e02f28205f16d8616227caab99f8b7960c8630ed
-
SHA512
a56dd3f965f2b6d88ed8093698f14ed64c03dfe8504f91bf77b89c769ef1143b9cfaf7acacd1520ed4c953e07d1022e1610edb137afac9680fd8848c12d74cee
-
SSDEEP
1536:Vqr81ooMDS034nC54nZrL4AkiuAMOkEEW/yEbzvadf+a9GqFUYu:W8GhDS0o9zTGOZD6EbzCdMPYu
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Blocklisted process makes network request
-