Overview

overview

8

Static

static

8

c79122c852...18.doc

windows7-x64

7

c79122c852...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    c79122c852b15d95bde70eed1c0c4039_JaffaCakes118

  • Size

    235KB

  • MD5

    c79122c852b15d95bde70eed1c0c4039

  • SHA1

    2b87ebd66685b9e6bf3876c28acae57554b0b5dd

  • SHA256

    aeb0e54aa27f0c3d11011ee040f22c2e9b008ab18d79423b4f9b369ca5210719

  • SHA512

    ea45b0719f843c884b00930be548d3e1120eadea395f9b92aa7f3c1d947ca1e7963195a63b6d04e67b5c6205b222112e16abd5bf58ef552c9f0b963cc2a0efc1

  • SSDEEP

    1536:dterihwjEu5s1mermyzrKXhbIDHrTP9ygK/dRYhTVdcDLAo/g7NohMpXi:d/wjd5s1mermyHKxECdShoDCNohcXi

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • c79122c852b15d95bde70eed1c0c4039_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5