General
-
Target
b4a09c8b5705427d4cdab9b0f357cdec_JaffaCakes118
-
Size
159KB
-
Sample
240616-xccvhssdne
-
MD5
b4a09c8b5705427d4cdab9b0f357cdec
-
SHA1
1f7a7e7e280b35cc31cfc35fc684a16b7d12605a
-
SHA256
38e790bd07cd5f4fe844f600f44fccadf0842eac6977c1a3f17b3a3c6b792ef5
-
SHA512
fe6c3bb70123416e37891223b631da5b470af151f618f4e1fc36236d6157c18590feae32d8282e8c1ad73db849299ae21be8cd1da35a65647d1d8357baaa468c
-
SSDEEP
3072:hDj0/OBeGZssdItB7meqXWPb6GLPM+v05eLX:V02BeGZBILm7GPbLLFv058X
Malware Config
Targets
-
-
Target
b4a09c8b5705427d4cdab9b0f357cdec_JaffaCakes118
-
Size
159KB
-
MD5
b4a09c8b5705427d4cdab9b0f357cdec
-
SHA1
1f7a7e7e280b35cc31cfc35fc684a16b7d12605a
-
SHA256
38e790bd07cd5f4fe844f600f44fccadf0842eac6977c1a3f17b3a3c6b792ef5
-
SHA512
fe6c3bb70123416e37891223b631da5b470af151f618f4e1fc36236d6157c18590feae32d8282e8c1ad73db849299ae21be8cd1da35a65647d1d8357baaa468c
-
SSDEEP
3072:hDj0/OBeGZssdItB7meqXWPb6GLPM+v05eLX:V02BeGZBILm7GPbLLFv058X
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
An obfuscated cmd.exe command-line is typically used to evade detection.
-