1b11eb3250e38969955bc7b5029ec6d82d8a0bb0ac009c7d53290efb491fc85e | Triage

Submit
Reports

Overview

overview

Static

static

8

93962c49f6...18.doc

windows7-x64

93962c49f6...18.doc

windows10-2004-x64

Sharing

General

Target

93962c49f6d160592f2a9153880877e7_JaffaCakes118
Size

136KB
Sample

240604-erwxtscf6w
MD5

93962c49f6d160592f2a9153880877e7
SHA1

ec4bc19605963436b8d6e1dff29691635df8c033
SHA256

1b11eb3250e38969955bc7b5029ec6d82d8a0bb0ac009c7d53290efb491fc85e
SHA512

61ef73afe2efdf76b759e94ff3cf9cd1dc0e363234d270e0f57e9d7c1a420f3c490e951ef44a036f19cd4588098c9e45e5e54a27b97c543fb0219b625833e76a
SSDEEP

1536:Vwt81ooMDS034nC54nZrL4AkiuAMOkEEW/yEbzvadf+a9uD5C5kVH0PdG:M8GhDS0o9zTGOZD6EbzCd9mWFG

Score

10^/10

macro

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

93962c49f6d160592f2a9153880877e7_JaffaCakes118.doc

Resource

win7-20240221-en

windows7-x64

12 signatures

150 seconds

Behavioral task

behavioral2

Sample

93962c49f6d160592f2a9153880877e7_JaffaCakes118.doc

Resource

win10v2004-20240426-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  93962c49f6d160592f2a9153880877e7_JaffaCakes118
- Size
  
  136KB
- MD5
  
  93962c49f6d160592f2a9153880877e7
- SHA1
  
  ec4bc19605963436b8d6e1dff29691635df8c033
- SHA256
  
  1b11eb3250e38969955bc7b5029ec6d82d8a0bb0ac009c7d53290efb491fc85e
- SHA512
  
  61ef73afe2efdf76b759e94ff3cf9cd1dc0e363234d270e0f57e9d7c1a420f3c490e951ef44a036f19cd4588098c9e45e5e54a27b97c543fb0219b625833e76a
- SSDEEP
  
  1536:Vwt81ooMDS034nC54nZrL4AkiuAMOkEEW/yEbzvadf+a9uD5C5kVH0PdG:M8GhDS0o9zTGOZD6EbzCd9mWFG
Score

10^/10
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Blocklisted process makes network request
- An obfuscated cmd.exe command-line is typically used to evade detection.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy