Overview

overview

8

Static

static

8

f529869d57...18.doc

windows7-x64

7

f529869d57...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    f529869d5737722aaf4cec114722b7f7_JaffaCakes118

  • Size

    242KB

  • MD5

    f529869d5737722aaf4cec114722b7f7

  • SHA1

    239b0a314fd129a51268ca3e7929c8206e72260d

  • SHA256

    5e2187c0f0d10c41b5e5a6a159a569edaefeb738a05c0a74a14bc2cf42026d2a

  • SHA512

    f0610b6047aa5d1b5e19317b9913df265973b77f042277e0ae16e06b4ac1bbd2d618873f94bfa3111ba4961ce1d53c541db680b82ae67bec855aeb80ef567217

  • SSDEEP

    1536:MterTkw9HnXPJguq73/IKB5Kby0gcdHrTPryiK/dRY011qlhvawmq0N5/nwb1:Mvw9HXPJguq73/IKBWyOOdSYEVVq5/wR

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • f529869d5737722aaf4cec114722b7f7_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5