Overview

overview

8

Static

static

8

efab7d41a0...18.doc

windows7-x64

7

efab7d41a0...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    efab7d41a0bd0193a31197060f557dd8_JaffaCakes118

  • Size

    241KB

  • MD5

    efab7d41a0bd0193a31197060f557dd8

  • SHA1

    ce4606ae0ee524c69a8441239cb45eeae8a3c60a

  • SHA256

    bb3352957851566f14086162318d9f365b76baea8144c7189836bd86be9751f1

  • SHA512

    c5fea07470034396ab394359f7af81c074b12a96904e6253b0c8e59d10ca258923af81d80d4c1ea543ac224bb9a2528b65b7e405949001782160ca8046eceb8d

  • SSDEEP

    1536:mterTkw9HnXPJguq73/IKB5Kby0gpWHrTPiybK/dRYYGfZNK1PSE67aG2cBT2r:mvw9HXPJguq73/IKBWye0dSps8ev

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • efab7d41a0bd0193a31197060f557dd8_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5