b24b697e1c21eedeafbdce4112b024a3c003d945fafd10e6d56086d4c09f0095 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

JaffaCakes118_061c7f251ef4044c3a5eee9b404f1d87
Size

9KB
Sample

250517-mq4v2s1qt5
MD5

061c7f251ef4044c3a5eee9b404f1d87
SHA1

1c098a14727a19a61187b78850f3122790a75f0f
SHA256

b24b697e1c21eedeafbdce4112b024a3c003d945fafd10e6d56086d4c09f0095
SHA512

4ffce85666bcce364d15566d024f69f0ef31cb51581c1320ccc32961ee499dab2d9de4e4381c1d2172d36c27c46bac70f6ffb563da5a29b70bbd36734a527f62
SSDEEP

192:SWcNPETsy9L41aFUlbVvevUqzQXpS0/Ca6eb:a292mUlM9z6pCa6eb

Score

10^/10

discovery macro xlm

Malware Config

Targets

- Target
  
  JaffaCakes118_061c7f251ef4044c3a5eee9b404f1d87
- Size
  
  9KB
- MD5
  
  061c7f251ef4044c3a5eee9b404f1d87
- SHA1
  
  1c098a14727a19a61187b78850f3122790a75f0f
- SHA256
  
  b24b697e1c21eedeafbdce4112b024a3c003d945fafd10e6d56086d4c09f0095
- SHA512
  
  4ffce85666bcce364d15566d024f69f0ef31cb51581c1320ccc32961ee499dab2d9de4e4381c1d2172d36c27c46bac70f6ffb563da5a29b70bbd36734a527f62
- SSDEEP
  
  192:SWcNPETsy9L41aFUlbVvevUqzQXpS0/Ca6eb:a292mUlM9z6pCa6eb
Score

10^/10

discovery
- Process spawned unexpected child process
  This typically indicates the parent process was compromised via an exploit or macro.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2