Overview

overview

10

Static

static

8

6331.case-11830.xls

windows7-x64

10

6331.case-11830.xls

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    99271a1c5f9a241a9e9cc906528ed50f_JaffaCakes118

  • Size

    200KB

  • Sample

    240605-y5qgrahd77

  • MD5

    99271a1c5f9a241a9e9cc906528ed50f

  • SHA1

    9314da332c983c0c0c8072327a67cc0be29607d5

  • SHA256

    6c669073bc4850de3923b22e82f754a62f6b620b291618dfb00669100381e751

  • SHA512

    876d7c9553ee0348456d7593a87906fe4370455db8b3a264879ee082e32f53529da0191c1d14374431be3aa36b69789f886151979d9eb69ed732db65a4d454e1

  • SSDEEP

    3072:1dVCiJN3Rzcj2pH4b//0pO1OHMM0vuyMecKEc/OVfeE0gflXgOz8Gj:1d3Rzcj25cMpWM0vP6KEAyfeWZ8Gj

Score
10/10
macroxlm

Malware Config

Targets

    • Target

      6331.case-11830.xls

    • Size

      146KB

    • MD5

      c0b97d7ef4029e093271c362794fccb7

    • SHA1

      df568590ec942e44923d76793c92e8418e40a55f

    • SHA256

      3409c35ec3fc7cb56d75a790fd4693fdd7935e426676d72df67d234007f593e1

    • SHA512

      0e9bb2a3831a8a1d96e15631a8b20c39986fa207d7f229537c3c537fe7b46a3b7a4546f3f3289b7e9333d9cf0b07e7616e7895a823cb77c9ddd93216568d720c

    • SSDEEP

      3072:Vk3hOdsylKlgxopeiBNhZFGzE+cL2kdAvDiKHjEtpbDZEOrkeGPfJ0s3Tq48L/iy:Vk3hOdsylKlgxopeiBNhZF+E+W2kdAvk

    Score
    10/10

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks