General
-
Target
68b6beb98136f26d1a4ff3fcbb7f2ee5_JaffaCakes118
-
Size
507KB
-
Sample
240401-fwz1qaeh22
-
MD5
68b6beb98136f26d1a4ff3fcbb7f2ee5
-
SHA1
f6662a481570f1cbfaf0b7e3d798d4cc78e14ea2
-
SHA256
de2d33fe728754190016e5ed66fe93fc6212884da68f52ace01205fea357ec22
-
SHA512
363734d8087111f99d4cab82855a9a054eae3823f11f6e7b97c689b834782683fc23784cc19666cb2607b40747bfb9b68b06740df3fc5396570314d0976b79a7
-
SSDEEP
12288:z3bQGf4GH3cn+brPQuxDUNov+VrRzUtwa8c2ixN:zr7MnkPQuRaRzwMc
Static task
static1
Behavioral task
behavioral1
Sample
68b6beb98136f26d1a4ff3fcbb7f2ee5_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
formbook
4.1
hue4
omniforexsignalsreviews.com
safepostcourier.com
thechurchosconference.com
buyhouses.biz
5pineridge.com
digitalgaminguk.com
ladepi.com
ildfirefarm.com
gatheredbhm.com
yesontape.com
tnlf.net
meetwithcjg.com
datematerelate.com
allnationscbus.com
vencam.online
servicios-royale.com
tenlog008.xyz
guiadesfralde.club
megacrypto.xyz
xn--h1adhok0c.com
esporawine.com
roofergirl.net
lsgram.online
goongetdirty.com
magicgurus.net
sewingstichestshirtsandmore.com
chriscrown.xyz
erkikonton.com
futbolurbano.com
ilarealty.com
test-newdnsjis.info
noutims.com
cryptocourse.one
sp-jc.com
huikeshangh.com
ln-safe-keepingtoyof6.xyz
workshopbobbin.com
vitos1.xyz
cat2628.top
vse5plus.store
ideayj.com
meloba.com
916pacificproducts.store
linghuazaixian.com
brialancaster.com
masserialetaverne.com
seo-clicks7.com
immoprivado.net
vinvinowein.com
ndtailgateofchampions.com
arroundworld.com
juniperandboo.com
factoryservers.com
newagespiritualitystore.com
isiws.com
tigerpay-partners.com
bitprosolutions.com
midtnrealestatepro.com
chemputation.com
truckingsservices.com
fbsmarkets.com
qstudybooks.com
xn--z8jo3e4btr60a4flo.com
bjmovementexp.com
millieandmaude.net
Targets
-
-
Target
68b6beb98136f26d1a4ff3fcbb7f2ee5_JaffaCakes118
-
Size
507KB
-
MD5
68b6beb98136f26d1a4ff3fcbb7f2ee5
-
SHA1
f6662a481570f1cbfaf0b7e3d798d4cc78e14ea2
-
SHA256
de2d33fe728754190016e5ed66fe93fc6212884da68f52ace01205fea357ec22
-
SHA512
363734d8087111f99d4cab82855a9a054eae3823f11f6e7b97c689b834782683fc23784cc19666cb2607b40747bfb9b68b06740df3fc5396570314d0976b79a7
-
SSDEEP
12288:z3bQGf4GH3cn+brPQuxDUNov+VrRzUtwa8c2ixN:zr7MnkPQuRaRzwMc
-
Formbook payload
-
Suspicious use of SetThreadContext
-