General
-
Target
8279edc14cc42685f7fceefe384ddf0d_JaffaCakes118
-
Size
389KB
-
Sample
240402-d3yp5afh76
-
MD5
8279edc14cc42685f7fceefe384ddf0d
-
SHA1
d6b01e94dd1528eb364e16db7bc6a5e06a66bde6
-
SHA256
5a573da6707c9373b0f49b049b07ddc21bc6976195b834473d0be2daaf52c173
-
SHA512
6a1963004eb2cbfc49c48b638d70a9f7a9fa9ad24629bb78f2cdd31ad84d3a3908d707d51d88f5cb2f8acc7c9cab0725d84ca8957b3d32ea194205e3390d6f95
-
SSDEEP
6144:kKq6ZZmDQ+3HwOEjhH+KU8b1Qy6mK8WRAYfnsdtGfBYmP6tKX:skoq1BTbKy6x8/vdMfBRX
Static task
static1
Behavioral task
behavioral1
Sample
8279edc14cc42685f7fceefe384ddf0d_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Extracted
xloader
2.5
shjn
trendlito.com
myspoiledbytchcreations.com
skinsotight.com
merakii.art
sakina.digital
qumpan.com
juxing666.com
andrewolivercounselling.com
blastaerobics.com
linevshaper.store
legendvacationrentals.com
adna17.com
ingodwetrustdaycare.com
j98066.com
noordinarybusiness.com
pacelicensedelectrician.com
istanbulmadencilik.com
roboscop.com
njhude.com
eaglelures.com
asmrfans.com
wwv-kraken-apps.com
agora.markets
factechcolombia.com
cadillacjacksbargrill.com
lakearrowheadescape.com
privatelymeeting.com
purelol.com
bailey-holzwerk.com
lawsorlando.com
zoonseo.com
petscomfortgrooming.com
blogreen.xyz
modernmpm.com
axe8.club
majesticgolftours.com
happyj.biz
2ed58fwec.xyz
moms4real.com
craftsbylarissa.com
ninetofivetheses.com
giftsetswithlove.com
artistryinahome.com
bestofdubrovnik.info
mediakal-sa.net
9158cs.xyz
sakuratyu.com
christasconezntreats.com
flex-aportelabels.com
douyinliu.com
meet-bait.com
sumikkoremon.com
jjscryptosignals.com
repsychel.com
hartfulcleaning.com
buylandintexas.net
xn--blogins-w1b.com
aksene.com
californialandscapeimages.com
watchyellow.space
altcultpromotions.com
fusiongroupgames.net
panchmitramultitrade.com
theledgrowbook.com
anamentor.com
Targets
-
-
Target
8279edc14cc42685f7fceefe384ddf0d_JaffaCakes118
-
Size
389KB
-
MD5
8279edc14cc42685f7fceefe384ddf0d
-
SHA1
d6b01e94dd1528eb364e16db7bc6a5e06a66bde6
-
SHA256
5a573da6707c9373b0f49b049b07ddc21bc6976195b834473d0be2daaf52c173
-
SHA512
6a1963004eb2cbfc49c48b638d70a9f7a9fa9ad24629bb78f2cdd31ad84d3a3908d707d51d88f5cb2f8acc7c9cab0725d84ca8957b3d32ea194205e3390d6f95
-
SSDEEP
6144:kKq6ZZmDQ+3HwOEjhH+KU8b1Qy6mK8WRAYfnsdtGfBYmP6tKX:skoq1BTbKy6x8/vdMfBRX
-
Xloader payload
-
Suspicious use of SetThreadContext
-