Overview

overview

8

Static

static

8

357ab1fba9...18.doc

windows7-x64

7

357ab1fba9...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    357ab1fba96d86527f2598acc1c643e2_JaffaCakes118

  • Size

    241KB

  • MD5

    357ab1fba96d86527f2598acc1c643e2

  • SHA1

    c7295c9b0f376d1c43970c14098038994be5e992

  • SHA256

    eb544aa1ff5ef6881a52e13437fd43f484f09b01f728925e18fe5c7ea00c543c

  • SHA512

    80b88841c916fef07fdfeb3d6ae5405e3d153bb99653194da6caa929bbc48283ff2e6ea86d3afed20d87c2479c419b9e662b0fe68bf22bd21ff62055a5e745e6

  • SSDEEP

    3072:Cvw9HXPJguq73/IKBWyjadSJhaIh8+V8O9Jb:CvKHXPJi73wAwUJ8C8O9h

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • 357ab1fba96d86527f2598acc1c643e2_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5