General

  • Target

    d1dde5ecf22871ce506ba8ef19d9194c_JaffaCakes118

  • Size

    242KB

  • MD5

    d1dde5ecf22871ce506ba8ef19d9194c

  • SHA1

    bb02adb5408aab6023356cd67afd1e8354ac8874

  • SHA256

    2ac91d5685a7b528b4eb947f4f4fe47048d4a25e94ed1187c4e62f76878a7e78

  • SHA512

    e81ec0b9e9403514456000b5f072406ac3243f1d274a81aa860b094495d788fd28aaa95ed01da56ac423075e81b3c1770d6755d05fba3fd5625c8b4e089d0328

  • SSDEEP

    1536:nterTkw9HnXPJguq73/IKB5Kby0gcPHrTPxy8K/dRYr2sVoH3krSrHflUU7Qwht+:nvw9HXPJguq73/IKBWyQmdSaD3gSrnQ5

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

Files

  • d1dde5ecf22871ce506ba8ef19d9194c_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5