General

  • Target

    797ede5d36d727aa267fe746e0b57bdc_JaffaCakes118

  • Size

    154KB

  • Sample

    240527-sdey2shd36

  • MD5

    797ede5d36d727aa267fe746e0b57bdc

  • SHA1

    f92ca04799454cfa3c32df7e4b76e5ecef06762b

  • SHA256

    e164e71625c14bb85c78f2b0409f4571ff6ee78eec0ff1417c15939e69da4eb5

  • SHA512

    6ac7a085420a5664e8604f3cc7542593550e06bf93cb59dbfb179b5cdc1c54459af194f64479b3da05f9a76337db2b55edbb095f25880c8dc4c24b02523da831

  • SSDEEP

    1536:7INVczHkD9icmT+FFdZ+a99hnd+vK5dbVCpdKEEFe3wpeKxX/85AFcndRJ/p:7In/iKFbhd+Ytxxv85AFcd

Score
10/10

Malware Config

Targets

    • Target

      797ede5d36d727aa267fe746e0b57bdc_JaffaCakes118

    • Size

      154KB

    • MD5

      797ede5d36d727aa267fe746e0b57bdc

    • SHA1

      f92ca04799454cfa3c32df7e4b76e5ecef06762b

    • SHA256

      e164e71625c14bb85c78f2b0409f4571ff6ee78eec0ff1417c15939e69da4eb5

    • SHA512

      6ac7a085420a5664e8604f3cc7542593550e06bf93cb59dbfb179b5cdc1c54459af194f64479b3da05f9a76337db2b55edbb095f25880c8dc4c24b02523da831

    • SSDEEP

      1536:7INVczHkD9icmT+FFdZ+a99hnd+vK5dbVCpdKEEFe3wpeKxX/85AFcndRJ/p:7In/iKFbhd+Ytxxv85AFcd

    Score
    10/10
    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • An obfuscated cmd.exe command-line is typically used to evade detection.

MITRE ATT&CK Enterprise v15

Tasks