Overview

overview

8

Static

static

8

973fbc8411...18.doc

windows7-x64

7

973fbc8411...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    973fbc8411b62a64fe079e7b50f663fa_JaffaCakes118

  • Size

    241KB

  • MD5

    973fbc8411b62a64fe079e7b50f663fa

  • SHA1

    592a277ed9b564df350fc4b7f5f68b439d4e33ac

  • SHA256

    a2f5d168e115027b80d8445fd7b48504a49b2d04c603e404ac1f2d4ec2708a0b

  • SHA512

    26e8dec8b6428b93e1e304d68a2f8b94ddf8905e125341e069781fa3e79478dc276ebab8420e5ec1101923ebcee7f88db64485f51d679efdd8a69c0d010db317

  • SSDEEP

    1536:0terTkw9HnXPJguq73/IKB5Kby0g1CHrTPmy3K/dRYBEbk6TXubT+rWwta:0vw9HXPJguq73/IKBWyOcdSabVUTYhta

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • 973fbc8411b62a64fe079e7b50f663fa_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5