Overview

overview

8

Static

static

8

f72635c24f...18.doc

windows7-x64

7

f72635c24f...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    f72635c24f3eb0b0aa8c8bfb9e370a80_JaffaCakes118

  • Size

    242KB

  • MD5

    f72635c24f3eb0b0aa8c8bfb9e370a80

  • SHA1

    b966c5309cbad81a9f46d58a0324233e860658d5

  • SHA256

    01662a651dfcfb2676b48aeff2f9cc4dffea1f2472ec275d91ed8681a2e20c35

  • SHA512

    c6f88b57d4be1b3f28ed6a628406b58d0619d0f4b84915b28a8b5f428f03944567c7b604bca8a428b02560080c1dbe802ada6aedab918b98741bc50930648914

  • SSDEEP

    3072:9vw9HXPJguq73/IKBWy2udSQwmOQeUzvY:9vKHXPJi73wAbUQwfkzQ

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • f72635c24f3eb0b0aa8c8bfb9e370a80_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5