General
-
Target
266bea059e22c1f41f1e52f91085557f_JaffaCakes118
-
Size
458KB
-
Sample
240329-tke33acf57
-
MD5
266bea059e22c1f41f1e52f91085557f
-
SHA1
f835aead5f6813938c799fbe17dc474195cd1d53
-
SHA256
baa03fe427a6d7ec2a551e763b3c04ba010b404dedd4291bfdc6c478d848df68
-
SHA512
a7e7d9ddbac8c25995e2c76d2a3811045c1ff8f6d5a59c261250ed2c74a38c696a2754d7b6d9305df1693175d3934e154e08617307904f182efe3ee025956d37
-
SSDEEP
6144:EbE6QhiTaF9dCJL9mERt9RGTtKttotRtYDETAH2waf3V1fRdwdbWNArn+fOAlXTZ:E6DyL9pD3HO37fIdbnY6+v5EwQ8S
Static task
static1
Behavioral task
behavioral1
Sample
266bea059e22c1f41f1e52f91085557f_JaffaCakes118.exe
Resource
win7-20240319-en
Malware Config
Extracted
xloader
2.5
gab8
amateurfeetworship.com
big-food.biz
metaversevolution.com
profecional-pacasmayo.com
royzoom.com
bekindevolution.com
hokozaki.com
waltersswholesale.com
wayfinderacu.com
schnurrgallery.com
babygearrentals.net
imggtoken.club
24x7x366.com
lakiernictwo.info
les-cours.com
dwticket.com
onarollshades.com
ramireztradepartners.com
safarparfums.com
6ngie.info
hoedetamni.quest
europeangurl.com
sakhakot.com
franciscoalpizar.com
jsyysn.com
goldberg-lighting.com
symbebidas.online
aucoeurducadeau.com
diamondscaterers.com
surswain.quest
gequper.xyz
roytsb.com
332151.com
hienrenow.com
skullother.com
betnubhelp.com
donerightcleaningnation.info
noukou-tonkotsu.xyz
bulkysofthome.com
yuejiayouhua.com
sevillalimpieza.com
involvefinance.com
obz7mo9amu.com
niftyfashionreward.com
refunddngame.com
norllix.com
vergadercentrumdji.com
1006e.com
boraeresici.com
partnerbebefits.com
hejabbanifatemi.com
bigskypediatrics.com
thefortclub.com
blacksource.xyz
happyklikshop.com
fullamodatoptan.com
pinupcams.info
javnfts.com
duocvietpharmacy.com
babyfloki.tech
cequitycorp.com
frenziedflora.com
5cherries.com
slurcap.com
purodetalle.com
Targets
-
-
Target
266bea059e22c1f41f1e52f91085557f_JaffaCakes118
-
Size
458KB
-
MD5
266bea059e22c1f41f1e52f91085557f
-
SHA1
f835aead5f6813938c799fbe17dc474195cd1d53
-
SHA256
baa03fe427a6d7ec2a551e763b3c04ba010b404dedd4291bfdc6c478d848df68
-
SHA512
a7e7d9ddbac8c25995e2c76d2a3811045c1ff8f6d5a59c261250ed2c74a38c696a2754d7b6d9305df1693175d3934e154e08617307904f182efe3ee025956d37
-
SSDEEP
6144:EbE6QhiTaF9dCJL9mERt9RGTtKttotRtYDETAH2waf3V1fRdwdbWNArn+fOAlXTZ:E6DyL9pD3HO37fIdbnY6+v5EwQ8S
-
Xloader payload
-
Suspicious use of SetThreadContext
-