Overview

overview

8

Static

static

8

5b757b8baf...18.doc

windows7-x64

7

5b757b8baf...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    5b757b8baffadc16de1c8afe8a6ce55e_JaffaCakes118

  • Size

    239KB

  • MD5

    5b757b8baffadc16de1c8afe8a6ce55e

  • SHA1

    60c64a0c19d1796e2f443f8f505f6d4ba0f8a8cd

  • SHA256

    78542dc1304a46ad558a97e4e718e178783390a266face58e1d6aab8847ff8d6

  • SHA512

    f608e9e12a8b6ef116a40ee15782432f3ad512b61684a4716064c2df4f9041d3e5d7543bae22ad6d7685f2d5c914f450d747cfaa5696aff63ef09be7874fd06a

  • SSDEEP

    1536:iterU1wDv/6MaETOgnHJcIKBC5bvzNqHrTPKyTK/dRYtvAX07VgAH2fCMnd:i/wDvWETOgnHJcIKBs7codSVx6+2fCM

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • 5b757b8baffadc16de1c8afe8a6ce55e_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5