0bab91b3290a63c14f2bcc134e89c47b520f8e09d97d1771ec2c2506dce0a57e | Triage

Submit
Reports

Overview

overview

Static

static

8

749042d083...18.doc

windows7-x64

749042d083...18.doc

windows10-2004-x64

Sharing

General

Target

749042d0832ad213c28d2222a1b403e4_JaffaCakes118
Size

179KB
Sample

240726-sjce4svfqp
MD5

749042d0832ad213c28d2222a1b403e4
SHA1

84171e967cf6c9f1df44f8faaaa497171146fcaf
SHA256

0bab91b3290a63c14f2bcc134e89c47b520f8e09d97d1771ec2c2506dce0a57e
SHA512

d6ca8426c881d642eaf9bcc9cf3e1c0c82cbb8e48f89012cee30a9e84e0aebc3ea34980357ff707ee84271f5d7eeaa7eee8d323fb543bddce785b0f1db89e80e
SSDEEP

3072:lr9qO4vcaSVmX1mnUaghvw5tyOM89g0hBh8/Km6pgVu+:TqO6caSn9ghY5t7hjhBh8imH

Score

10^/10

discovery macro

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

749042d0832ad213c28d2222a1b403e4_JaffaCakes118.doc

Resource

win7-20240708-en

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

749042d0832ad213c28d2222a1b403e4_JaffaCakes118.doc

Resource

win10v2004-20240709-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  749042d0832ad213c28d2222a1b403e4_JaffaCakes118
- Size
  
  179KB
- MD5
  
  749042d0832ad213c28d2222a1b403e4
- SHA1
  
  84171e967cf6c9f1df44f8faaaa497171146fcaf
- SHA256
  
  0bab91b3290a63c14f2bcc134e89c47b520f8e09d97d1771ec2c2506dce0a57e
- SHA512
  
  d6ca8426c881d642eaf9bcc9cf3e1c0c82cbb8e48f89012cee30a9e84e0aebc3ea34980357ff707ee84271f5d7eeaa7eee8d323fb543bddce785b0f1db89e80e
- SSDEEP
  
  3072:lr9qO4vcaSVmX1mnUaghvw5tyOM89g0hBh8/Km6pgVu+:TqO6caSn9ghY5t7hjhBh8imH
Score

10^/10

discovery
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- Use of msiexec (install) with remote resource
- Blocklisted process makes network request
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy