Overview

overview

8

Static

static

8

c1055853a4...18.doc

windows7-x64

7

c1055853a4...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    c1055853a4cdfd99534e02b5ce447e39_JaffaCakes118

  • Size

    204KB

  • MD5

    c1055853a4cdfd99534e02b5ce447e39

  • SHA1

    da96fe9f2fa810d2d768d4fcdff8e92c01ae23b1

  • SHA256

    b0564aa2786ccc9d9cae684c88cf1a79e495b7d9fdf192ac2c48cddabf88a1bd

  • SHA512

    05f8fef5bdb8ebb7b21ce9f53144765a5f633a412d29a4dafa70ada367117fd52c5f6538766f56302df973c5846968d818950079153a65e8c767b264fef0599f

  • SSDEEP

    1536:ZtPrT8wrLT0NeXxz1DwemHrTPDyt5J8blm6kiUGyqsp5NcggHrzkgTas:Z2w3keXxz1DfeUyjkgQ5ST1/

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • c1055853a4cdfd99534e02b5ce447e39_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5

    UserForm6