Overview

overview

8

Static

static

8

38264e3bb9...18.doc

windows7-x64

7

38264e3bb9...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    38264e3bb98e99987b8c2a3c466bc8b2_JaffaCakes118

  • Size

    242KB

  • MD5

    38264e3bb98e99987b8c2a3c466bc8b2

  • SHA1

    b9e84f852cf3de7047e8a943b7793938bd06f44c

  • SHA256

    d6de06ae9835ba2f4bbef2ee71f46eb6d9b68b87a1cc5fc64b1a5e9c321b3d37

  • SHA512

    0ac4b9a6ee71e0aedad6db25979ed07a3c995b289d35fcce8e10691577b53b8053b897fe90bcc309bd49594b1530dc42c0c88c9b7c554cfea165fe9d042016b8

  • SSDEEP

    3072:hvw9HXPJguq73/IKBWyEsdSIHf5z9HAt8G:hvKHXPJi73wAvUIy8G

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • 38264e3bb98e99987b8c2a3c466bc8b2_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5