General
-
Target
7aaf88ef83d0c7cc7b87aa37ad28996c_JaffaCakes118
-
Size
35KB
-
Sample
240527-1wzeeacg22
-
MD5
7aaf88ef83d0c7cc7b87aa37ad28996c
-
SHA1
1a9c6200d6a4ff809fe8c90fc8060254cd64094b
-
SHA256
8626496a0927c90eb97bc86dbdea49a6931cc8029b4f0481b5aad550deef9364
-
SHA512
1ca782ae6f40b4711eab6e18047f6de416b8f230f9787097f9d1661cf6fe87c30dab480582f79069c074ff402442c73ba4298c607f4f8a8442d412f8b4e063be
-
SSDEEP
384:eHfPjiS/ILJHRppii9xjbE0ji3/lvI+fRIhCO+oONu62/2t7BZ+TE:Wf+RpT9aX3/lvIORIhCyONu62/BTE
Behavioral task
behavioral1
Sample
7aaf88ef83d0c7cc7b87aa37ad28996c_JaffaCakes118.doc
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
7aaf88ef83d0c7cc7b87aa37ad28996c_JaffaCakes118.doc
Resource
win10v2004-20240426-en
Malware Config
Extracted
http://rekruteka.pl/ThreatProvider/bot.php?__utma=50ebfec1a9c0581#%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23%23
Targets
-
-
Target
7aaf88ef83d0c7cc7b87aa37ad28996c_JaffaCakes118
-
Size
35KB
-
MD5
7aaf88ef83d0c7cc7b87aa37ad28996c
-
SHA1
1a9c6200d6a4ff809fe8c90fc8060254cd64094b
-
SHA256
8626496a0927c90eb97bc86dbdea49a6931cc8029b4f0481b5aad550deef9364
-
SHA512
1ca782ae6f40b4711eab6e18047f6de416b8f230f9787097f9d1661cf6fe87c30dab480582f79069c074ff402442c73ba4298c607f4f8a8442d412f8b4e063be
-
SSDEEP
384:eHfPjiS/ILJHRppii9xjbE0ji3/lvI+fRIhCO+oONu62/2t7BZ+TE:Wf+RpT9aX3/lvIORIhCyONu62/BTE
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Blocklisted process makes network request
-