646d34d0bf6e22558a3a5d2787e60786d9d31ee2b2c0e3df19a090c88f2a90f3 | Triage

Submit
Reports

Overview

overview

Static

static

8

eab06280ca...18.doc

windows7-x64

eab06280ca...18.doc

windows10-2004-x64

Sharing

General

Target

eab06280ca8765bc669aabad584eef2f_JaffaCakes118
Size

133KB
Sample

240919-gdh5xstbrc
MD5

eab06280ca8765bc669aabad584eef2f
SHA1

8ddbeadaf758bd0c71e586fabe098250035280e8
SHA256

646d34d0bf6e22558a3a5d2787e60786d9d31ee2b2c0e3df19a090c88f2a90f3
SHA512

734442473604f0390568c408787f78797c1738de6c926dbbebd24b8427454dee830b5d9ddfcd76bf4fb5b7791f4caed60fc94ce951dec9f4f8cb5071ec54b620
SSDEEP

1536:Zj2Uk8ywBOn/c+a9E0HxJP/ufSMRZ1AWDZgyV2C8t9rBM:sUtHcb0rP/uhRMpK2CM

Score

10^/10

discovery macro macro_on_action

Static task

static1

macro macro_on_action

2 signatures

Behavioral task

behavioral1

Sample

eab06280ca8765bc669aabad584eef2f_JaffaCakes118.doc

Resource

win7-20240903-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

eab06280ca8765bc669aabad584eef2f_JaffaCakes118.doc

Resource

win10v2004-20240802-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  eab06280ca8765bc669aabad584eef2f_JaffaCakes118
- Size
  
  133KB
- MD5
  
  eab06280ca8765bc669aabad584eef2f
- SHA1
  
  8ddbeadaf758bd0c71e586fabe098250035280e8
- SHA256
  
  646d34d0bf6e22558a3a5d2787e60786d9d31ee2b2c0e3df19a090c88f2a90f3
- SHA512
  
  734442473604f0390568c408787f78797c1738de6c926dbbebd24b8427454dee830b5d9ddfcd76bf4fb5b7791f4caed60fc94ce951dec9f4f8cb5071ec54b620
- SSDEEP
  
  1536:Zj2Uk8ywBOn/c+a9E0HxJP/ufSMRZ1AWDZgyV2C8t9rBM:sUtHcb0rP/uhRMpK2CM
Score

10^/10

discovery
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
- An obfuscated cmd.exe command-line is typically used to evade detection.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

macromacro_on_action

behavioral1

behavioral2

© 2018-2025

Terms | Privacy