Overview

overview

8

Static

static

8

fbffc8c1a9...18.doc

windows7-x64

7

fbffc8c1a9...18.doc

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    fbffc8c1a9c620a261fdca3e8136b8c8_JaffaCakes118

  • Size

    205KB

  • MD5

    fbffc8c1a9c620a261fdca3e8136b8c8

  • SHA1

    4e9d9b43544d0787ef4acc931f8232988d2f5264

  • SHA256

    2e0222464993907dc4984aaa835313f7ac751237c162416cc45a64af6e690fc4

  • SHA512

    accecd040bd96edcc993f69937c31cc564cec274b114cfc067d512efd9e9948cd2d6f5b8cb0a741241cdcc912c4ae26dbaa1ad866101f81b2a8b2d783ace1580

  • SSDEEP

    1536:PtPrT8wrLT0NeXxz1DweKHrTPByf5J8bt0XkQT953biwuicZCpcVf:P2w3keXxz1Dfi8A0XkA9F2tiiCaVf

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • fbffc8c1a9c620a261fdca3e8136b8c8_JaffaCakes118
    .doc .eml office polyglot

    ThisDocument

    UserForm1

    UserForm2

    UserForm3

    UserForm4

    UserForm5

    UserForm6