Overview

overview

8

Static

static

8

b35e6dd49e...18.doc

windows7-x64

5

b35e6dd49e...18.doc

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b35e6dd49e37091042b908b52a5bd96a_JaffaCakes118

  • Size

    225KB

  • Sample

    240821-n456psxckf

  • MD5

    b35e6dd49e37091042b908b52a5bd96a

  • SHA1

    53cdae895f3e109d77cbc16ffba52f78161d9723

  • SHA256

    230aa8ef9eeb77ca38892e67875d65d8f635b183b76733f2b500275e5e5fe1d4

  • SHA512

    65ec5150eaeed28ee175e78002f4eeeb62d38da46783e916685a96c5495680c2090b8c8d4429f3143a18a0c2c10bedeedb1e99384b755a34971752ee6293cfe4

  • SSDEEP

    1536:mIEAAF/MvxtLPk4Qdd2wkrdFGcfonHE1WdUsnJH+A3PWNQfv:mJ/MvzLPk4QyfjAnHldUeAoWi

Score
8/10
discoverymacro

Malware Config

Targets

    • Target

      b35e6dd49e37091042b908b52a5bd96a_JaffaCakes118

    • Size

      225KB

    • MD5

      b35e6dd49e37091042b908b52a5bd96a

    • SHA1

      53cdae895f3e109d77cbc16ffba52f78161d9723

    • SHA256

      230aa8ef9eeb77ca38892e67875d65d8f635b183b76733f2b500275e5e5fe1d4

    • SHA512

      65ec5150eaeed28ee175e78002f4eeeb62d38da46783e916685a96c5495680c2090b8c8d4429f3143a18a0c2c10bedeedb1e99384b755a34971752ee6293cfe4

    • SSDEEP

      1536:mIEAAF/MvxtLPk4Qdd2wkrdFGcfonHE1WdUsnJH+A3PWNQfv:mJ/MvzLPk4QyfjAnHldUeAoWi

    Score
    6/10
    discovery

    • Process spawned suspicious child process

      This child process is typically not spawned unless (for example) the parent process crashes. This typically indicates the parent process was unsuccessfully compromised.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks