General

  • Target

    73d8a616f12e925c7b8f60d552256617_JaffaCakes118

  • Size

    2.0MB

  • MD5

    73d8a616f12e925c7b8f60d552256617

  • SHA1

    e9e2e667b4173dc10ce03549031bf297b1cc04dd

  • SHA256

    cf5ffeef2fb5b04e02f7fcdd3d9e126c27594ac86de8d37ef04b32cf59afe40f

  • SHA512

    c9b59d2321c716752b12da59ba846f3c3eff975da9bba0eefa1b3d0c8b041409a2db010d028c592f30ec63eef2ba9708ba0a91f24f9fbd37710b6f61b8463f7f

  • SSDEEP

    49152:lBvnSv52IeOoi5L645AIego25rLNHTEs35jVC:fvnkcy5LdCE5rBHz35jA

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

Files

  • 73d8a616f12e925c7b8f60d552256617_JaffaCakes118
    .zip
  • 3d.php
  • Outlook.html
    .html .js polyglot
  • Outlook_files/boot.worldwide.0.mouse.init.js.download
    .js
  • Outlook_files/boot.worldwide.1.mouse.init.js.download
    .js
  • Outlook_files/saved_resource.html
  • Sign in to your Microsoft account pass.html
    .js
  • Sign in to your Microsoft account pass.php
    .js
  • Sign in to your Microsoft account pass_files/Converged1033.css
  • Sign in to your Microsoft account pass_files/ConvergedLoginPaginatedStrings.EN.js.download
    .js
  • Sign in to your Microsoft account pass_files/ConvergedLogin_PCore.js.download
    .js
  • Sign in to your Microsoft account pass_files/boot.worldwide.0.mouse.js.download
    .js
  • Sign in to your Microsoft account pass_files/boot.worldwide.1.mouse.js.download
    .js
  • Sign in to your Microsoft account pass_files/boot.worldwide.2.mouse.js.download
    .js
  • Sign in to your Microsoft account pass_files/boot.worldwide.3.mouse.js.download
    .js
  • Sign in to your Microsoft account pass_files/boot.worldwide.mouse.css
  • Sign in to your Microsoft account pass_files/microsoft_logo.svg
  • Sign in to your Microsoft account pass_files/picker_account_msa.svg
  • Sign in to your Microsoft account pass_files/prefetch.html
    .html .js polyglot
  • Sign in to your Microsoft account pass_files/sprite1.mouse.css
  • Sign in to your Microsoft account pass_files/sprite1.mouse.png
    .png
  • Sign in to your Microsoft account.html
    .html .js polyglot
  • Sign in to your Microsoft account_files/Converged1033.css
  • Sign in to your Microsoft account_files/ConvergedLoginPaginatedStrings.EN.js.download
    .js
  • Sign in to your Microsoft account_files/ConvergedLogin_PCore.js.download
    .js
  • Sign in to your Microsoft account_files/boot.worldwide.0.mouse.js.download
    .js
  • Sign in to your Microsoft account_files/boot.worldwide.1.mouse.js.download
    .js
  • Sign in to your Microsoft account_files/boot.worldwide.2.mouse.js.download
    .js
  • Sign in to your Microsoft account_files/boot.worldwide.3.mouse.js.download
    .js
  • Sign in to your Microsoft account_files/boot.worldwide.mouse.css
  • Sign in to your Microsoft account_files/microsoft_logo.svg
  • Sign in to your Microsoft account_files/prefetch.html
    .html .js polyglot
  • Sign in to your Microsoft account_files/sprite1.mouse.css
  • Sign in to your Microsoft account_files/sprite1.mouse.png
    .png
  • build_99015d49 (1).zip
    .zip
  • build_99015d49/build.doc
    .doc windows office2003

    ThisDocument