Overview

overview

8

Static

static

8

356a305814...18.doc

windows7-x64

7

356a305814...18.doc

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    356a305814e66bf96aee899ad78f6b01_JaffaCakes118

  • Size

    235KB

  • MD5

    356a305814e66bf96aee899ad78f6b01

  • SHA1

    d6c2eda4b130df5469bb6108e00fb93980f9f23a

  • SHA256

    e91acb156a99be7f700c4ec2dd4d026b2efaf466077a4a65f923b7d8cab6405e

  • SHA512

    87c9b8ec6bb8e6c6d0bd071b4256992eaa30500616875c489469b6c06ac6dfe42d368371e814a5f3ab67d55d043729a4db5a7069f0e55e6052b2fda24b1ac25d

  • SSDEEP

    3072:pUwxv5OsmqrmrAKHjCdSR9FQPciVUTlF4C:pUgv5O4rmEDUReciVor

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • 356a305814e66bf96aee899ad78f6b01_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5