Overview

overview

8

Static

static

8

f64ff281ce...18.doc

windows7-x64

7

f64ff281ce...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    f64ff281ceb0139a7b7e4bd0198beba7_JaffaCakes118

  • Size

    238KB

  • MD5

    f64ff281ceb0139a7b7e4bd0198beba7

  • SHA1

    7d1f60e351a96a8b4c0e5a63c2e51533d572cfc1

  • SHA256

    0581c02dc2122d5b7c39be683abd815d35b3dc6df8df77075bd66677bbc42f6b

  • SHA512

    538de955aec14d5acfbc148dca55740b4bbd32c8216cc43ffefb3de0c6509fc71af0995fa1ec7a50c97314bf540d0afa23eaa4c5a909019357280989b4879df6

  • SSDEEP

    3072:wAw1vPEfOgnPJceKBDaHedSS0wuzWrhB4:wAKvPEfrPJBA7US03F

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • f64ff281ceb0139a7b7e4bd0198beba7_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5