General
-
Target
e36605b4d8b6e37b33ef0228bee7c764_JaffaCakes118
-
Size
78KB
-
Sample
240915-1d1jratbrg
-
MD5
e36605b4d8b6e37b33ef0228bee7c764
-
SHA1
36aa582a3a4d540d1c1335fd5cc9a37af8d65010
-
SHA256
788f2664d8d90cc23b7b0f987112fdd80c54de4ba9566a5714392b7fe0208fe9
-
SHA512
5cd157b31e7fab60f52f8b23bcfff37b2715a2c0916f6b76c732c094b8e040b5bf92b423e3c98e0086062711fb82dd61d03378aea181947c76379bb78f88dc1d
-
SSDEEP
768:Q/ZVucRFoqkp59YBvLdTv9ReVi4eFov5UHRFBt+1o9KTwiRZ1u2O7VQnoH:EZocn1kp59gxBK85fBt+a9KNRvi
Behavioral task
behavioral1
Sample
e36605b4d8b6e37b33ef0228bee7c764_JaffaCakes118.doc
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
e36605b4d8b6e37b33ef0228bee7c764_JaffaCakes118.doc
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
e36605b4d8b6e37b33ef0228bee7c764_JaffaCakes118
-
Size
78KB
-
MD5
e36605b4d8b6e37b33ef0228bee7c764
-
SHA1
36aa582a3a4d540d1c1335fd5cc9a37af8d65010
-
SHA256
788f2664d8d90cc23b7b0f987112fdd80c54de4ba9566a5714392b7fe0208fe9
-
SHA512
5cd157b31e7fab60f52f8b23bcfff37b2715a2c0916f6b76c732c094b8e040b5bf92b423e3c98e0086062711fb82dd61d03378aea181947c76379bb78f88dc1d
-
SSDEEP
768:Q/ZVucRFoqkp59YBvLdTv9ReVi4eFov5UHRFBt+1o9KTwiRZ1u2O7VQnoH:EZocn1kp59gxBK85fBt+a9KNRvi
Score10/10-
Process spawned unexpected child process
This typically indicates the parent process was compromised via an exploit or macro.
-
Blocklisted process makes network request
-