General
-
Target
6f7cdfbe48012cfaff16ba26d2b26d98_JaffaCakes118
-
Size
141KB
-
Sample
240524-xfq7bafe46
-
MD5
6f7cdfbe48012cfaff16ba26d2b26d98
-
SHA1
bc92e068a19d36e3505f2a5c782e3950820d4678
-
SHA256
96e77d26c333917dec940b9c2613ca845468ebfc968f1eeb5ff7c849f71a8a2c
-
SHA512
68b0d5de5b7860e8b3ba1bf2e09b8ad025dbe8e415295e881eb698afe1dd5175c75a5526e10f2b92d77dbbc2d123053989e27470d21dfc5306ae59a01c59c688
-
SSDEEP
3072:88GhDS0o9zTGOZD6EbzCdd25ok2y/9jWn:CoUOZDlbeGo+Sn
Behavioral task
behavioral1
Sample
6f7cdfbe48012cfaff16ba26d2b26d98_JaffaCakes118.doc
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
6f7cdfbe48012cfaff16ba26d2b26d98_JaffaCakes118.doc
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
6f7cdfbe48012cfaff16ba26d2b26d98_JaffaCakes118
-
Size
141KB
-
MD5
6f7cdfbe48012cfaff16ba26d2b26d98
-
SHA1
bc92e068a19d36e3505f2a5c782e3950820d4678
-
SHA256
96e77d26c333917dec940b9c2613ca845468ebfc968f1eeb5ff7c849f71a8a2c
-
SHA512
68b0d5de5b7860e8b3ba1bf2e09b8ad025dbe8e415295e881eb698afe1dd5175c75a5526e10f2b92d77dbbc2d123053989e27470d21dfc5306ae59a01c59c688
-
SSDEEP
3072:88GhDS0o9zTGOZD6EbzCdd25ok2y/9jWn:CoUOZDlbeGo+Sn
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Blocklisted process makes network request
-