General
-
Target
40c9037d2d9cf0ccfd3e4761b732c173_JaffaCakes118
-
Size
557KB
-
Sample
240330-wctmlaah7t
-
MD5
40c9037d2d9cf0ccfd3e4761b732c173
-
SHA1
5240cf37fb1799ae32d55ee681d53e9166199e56
-
SHA256
4a028b7f272dd96c75716d2268b551576a01ebccaca97bb19da43ec21dbe8514
-
SHA512
0ee8344e43aecfc056e6a37c0d84603c0eb3a81bb95770fcd01d28eb25f28c502594aec6e1e3c81a69da74921b52276f52f152c6041c6023312c823b1756ed22
-
SSDEEP
12288:WwMsSBaQ2JWBWxqXV6VsgIapA+gHq+CRnCah2fvZT2bL:POBeJw7kVVM+g4FCG23t2
Static task
static1
Behavioral task
behavioral1
Sample
40c9037d2d9cf0ccfd3e4761b732c173_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Extracted
formbook
4.1
ed9s
pocketoptioniraq.com
merabestsolutions.com
atelectronics.site
fuxueshi.net
infinitystay.com
forensicconcept.site
txpmachine.com
masterwhs.xyz
dia-gnwsis.art
fulltiltnodes.com
bigbnbbsc.com
formation-figma.com
bonanacroin.net
medicalmarijuanasatx.com
bagnavy.com
aaegiscares.net
presentationpublicschool.com
bestyousite.site
prescriptionn.com
beyondthenormbouquets.com
sinclairsparkes.com
yesterdayglass.com
lj-safe-keepinganwgt76.xyz
winlegends.com
perthvideoproduction.com
sgh.technology
athletik.biz
cardealergame.com
ugkhmel.xyz
4346emerald.com
soulconstructionservices.com
dalmac-nj.com
marylink.net
gentciu.com
insidecity.company
wensum-creations.com
frontwonline.com
8xovz.xyz
pickaxecoffee.com
stonezhang.top
markmra1995.site
valleysettlewash.top
canadabulkmushrooms.com
shiningoutdoors.com
elysiarv.xyz
artoidmode.com
whileloading.com
crgcatherine.com
usa111.com
tourmalinesepiapirole.info
infodf.xyz
girldollg.xyz
paypal-caseid581.com
bymetronet.com
outranky.com
bankinsurance.site
iscinterconnectsolutions.com
networth.fyi
fastplaycdn.xyz
fernradio.com
sergeantrandom.net
islamic-coins.com
naplesgolfcartbatteries2u.com
seniormedicarebenefits.net
vaughnmethod.com
Targets
-
-
Target
40c9037d2d9cf0ccfd3e4761b732c173_JaffaCakes118
-
Size
557KB
-
MD5
40c9037d2d9cf0ccfd3e4761b732c173
-
SHA1
5240cf37fb1799ae32d55ee681d53e9166199e56
-
SHA256
4a028b7f272dd96c75716d2268b551576a01ebccaca97bb19da43ec21dbe8514
-
SHA512
0ee8344e43aecfc056e6a37c0d84603c0eb3a81bb95770fcd01d28eb25f28c502594aec6e1e3c81a69da74921b52276f52f152c6041c6023312c823b1756ed22
-
SSDEEP
12288:WwMsSBaQ2JWBWxqXV6VsgIapA+gHq+CRnCah2fvZT2bL:POBeJw7kVVM+g4FCG23t2
-
Formbook payload
-
Suspicious use of SetThreadContext
-