Overview

overview

10

Static

static

8

dde043cc7b...18.doc

windows7-x64

10

dde043cc7b...18.doc

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    dde043cc7b12431ccd51d84137874332_JaffaCakes118

  • Size

    73KB

  • Sample

    240913-hd7nyszcnf

  • MD5

    dde043cc7b12431ccd51d84137874332

  • SHA1

    774d2da0c838dc58bc35528bee43bf97b5d7ebad

  • SHA256

    3d03fdbc8ba4b4266c88145f8771d44b9c136171e2c76e86c3e86a080b982724

  • SHA512

    696f4e9b9a5f9df07b6ca011a2c54863cf10e9343712139664d52eb50b81150af3862909d08c1464df66d1a4e61a6572887f871e79ae8c1f8af1d8ac6875963c

  • SSDEEP

    768:YBgPVucRFoqkp59YBvLdTv9ReVi4eFov5UHRFBt+1o9b3vKRmCAzWs8z1RA:vPocn1kp59gxBK85fBt+a9OmCq

Score
10/10
discoverymacro

Malware Config

Targets

    • Target

      dde043cc7b12431ccd51d84137874332_JaffaCakes118

    • Size

      73KB

    • MD5

      dde043cc7b12431ccd51d84137874332

    • SHA1

      774d2da0c838dc58bc35528bee43bf97b5d7ebad

    • SHA256

      3d03fdbc8ba4b4266c88145f8771d44b9c136171e2c76e86c3e86a080b982724

    • SHA512

      696f4e9b9a5f9df07b6ca011a2c54863cf10e9343712139664d52eb50b81150af3862909d08c1464df66d1a4e61a6572887f871e79ae8c1f8af1d8ac6875963c

    • SSDEEP

      768:YBgPVucRFoqkp59YBvLdTv9ReVi4eFov5UHRFBt+1o9b3vKRmCAzWs8z1RA:vPocn1kp59gxBK85fBt+a9OmCq

    Score
    10/10
    discovery

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Blocklisted process makes network request

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks