Overview

overview

10

Static

static

8

6fa2bb98b9...48.doc

windows7-x64

10

6fa2bb98b9...48.doc

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_feac72c5c4a55ae02c6e324a7f0a0dd0e2b37eba7e443db424f4fef1d46ae909

  • Size

    18KB

  • MD5

    e77ebaff9141cc9afee09d9a1e58a461

  • SHA1

    1633fcca31b003d68979652eb9e0bc417c871b20

  • SHA256

    feac72c5c4a55ae02c6e324a7f0a0dd0e2b37eba7e443db424f4fef1d46ae909

  • SHA512

    0f2f9f400c250fa3779a73a16d5359631f49d96f0196324aae32971934aca5db80a314742a86d0b1df3839ec9c861c5d0ec51d9946483e4aec4a80c7719e3657

  • SSDEEP

    384:tjofxyT4QyBfsr1ktrcX2RRzI1ttPMjIiRmNxy0fAS:tjoJy8BCrScGRwY2xy0b

Score
8/10
macromacro_on_action

Malware Config

Signatures

  • Office macro that triggers on suspicious action 1 IoCs

    Office document macro which triggers in special circumstances - often malicious.

    macromacro_on_action
  • Suspicious Office macro 1 IoCs

    Office document equipped with macros.

    macro

Files

  • JaffaCakes118_feac72c5c4a55ae02c6e324a7f0a0dd0e2b37eba7e443db424f4fef1d46ae909
    .zip

    Password: infected

  • 6fa2bb98b984211dca440babbf79b9f48ab4f0f157818f832f94de22ffaea448
    .doc .vbs windows office2003 polyglot

    ThisDocument

    NewMacros