Overview

overview

8

Static

static

8

aa317f0634...18.doc

windows7-x64

7

aa317f0634...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    aa317f0634af466fb5384c8c09f73a6f_JaffaCakes118

  • Size

    239KB

  • MD5

    aa317f0634af466fb5384c8c09f73a6f

  • SHA1

    31768fd6488026af0b9883a651217f9a9fa67880

  • SHA256

    735a220580bc51977b206ef876b8ed850826650e45020d5edf418c10e1df8b8c

  • SHA512

    f2292edfa7959f497e1cf7a063a2d5cb7f7745f3386e501391ff3e65c125a90d9c4048b01d0292b2c08cf048a3dacd1ce288d1cd6948087d6997eb015ba5b9ab

  • SSDEEP

    3072:F/wDvWETOgnHJcIKBs7ycdShDiq1skOsEuc1L2v:F/avWETrHJ9ACUcqzOsv4L+

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • aa317f0634af466fb5384c8c09f73a6f_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5