Behavioral task
behavioral1
Sample
d1dde5ecf22871ce506ba8ef19d9194c_JaffaCakes118.doc
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
d1dde5ecf22871ce506ba8ef19d9194c_JaffaCakes118.doc
Resource
win10v2004-20240802-en
General
-
Target
d1dde5ecf22871ce506ba8ef19d9194c_JaffaCakes118
-
Size
242KB
-
MD5
d1dde5ecf22871ce506ba8ef19d9194c
-
SHA1
bb02adb5408aab6023356cd67afd1e8354ac8874
-
SHA256
2ac91d5685a7b528b4eb947f4f4fe47048d4a25e94ed1187c4e62f76878a7e78
-
SHA512
e81ec0b9e9403514456000b5f072406ac3243f1d274a81aa860b094495d788fd28aaa95ed01da56ac423075e81b3c1770d6755d05fba3fd5625c8b4e089d0328
-
SSDEEP
1536:nterTkw9HnXPJguq73/IKB5Kby0gcPHrTPxy8K/dRYr2sVoH3krSrHflUU7Qwht+:nvw9HXPJguq73/IKBWyQmdSaD3gSrnQ5
Malware Config
Signatures
-
Office macro that triggers on suspicious action 1 IoCs
Office document macro which triggers in special circumstances - often malicious.
resource yara_rule sample office_macro_on_action -
resource sample
Files
-
d1dde5ecf22871ce506ba8ef19d9194c_JaffaCakes118.doc .eml office polyglot
ThisDocument
UserForm1
UserForm2
UserForm3
UserForm4
UserForm5