General

  • Target

    1fbd68291ca9618e1cbe60d678c2a00a_JaffaCakes118

  • Size

    67KB

  • Sample

    240702-sd1krasbpl

  • MD5

    1fbd68291ca9618e1cbe60d678c2a00a

  • SHA1

    5f2ed04cea7b4bb8e0132e74babdc31a19eafa32

  • SHA256

    ce33e46aef4908ab459aaea8e405640b30f6c3434981e2b02229844c6d765c73

  • SHA512

    8c174d2d443faffe4010823598ffb96630a910f916e9d44fd872c629db3befa2867825821c113c5b4cee6c16cc7973974b5740643133857bbd978ddf23ae4b12

  • SSDEEP

    384:8wH1+1otgV+vgW3vNPlTUAlzUVMjuTHTtP:91+1sa+7VPKZTN

Malware Config

Targets

    • Target

      1fbd68291ca9618e1cbe60d678c2a00a_JaffaCakes118

    • Size

      67KB

    • MD5

      1fbd68291ca9618e1cbe60d678c2a00a

    • SHA1

      5f2ed04cea7b4bb8e0132e74babdc31a19eafa32

    • SHA256

      ce33e46aef4908ab459aaea8e405640b30f6c3434981e2b02229844c6d765c73

    • SHA512

      8c174d2d443faffe4010823598ffb96630a910f916e9d44fd872c629db3befa2867825821c113c5b4cee6c16cc7973974b5740643133857bbd978ddf23ae4b12

    • SSDEEP

      384:8wH1+1otgV+vgW3vNPlTUAlzUVMjuTHTtP:91+1sa+7VPKZTN

    • Office macro that triggers on suspicious action

      Office document macro which triggers in special circumstances - often malicious.

    • Deletes itself

MITRE ATT&CK Enterprise v15

Tasks