General

  • Target

    0fa7205c9635cae1bfee33950b11b6c8_JaffaCakes118

  • Size

    902KB

  • Sample

    240503-exa8baeh41

  • MD5

    0fa7205c9635cae1bfee33950b11b6c8

  • SHA1

    bdac337264fbd8c74da9aa1fa8bf4ea46c55308c

  • SHA256

    e345918cd0083d4b1f5b2dc3c5d7b7c780fd19dfbb1c677bd482718bf034c14f

  • SHA512

    8c7603471798a80b62adb9749452855530749582a5e8cacba762a4a195d846126293332ce217ab2095b9a163ac97a5a57ff0d6d3ae3dcc79b8ab10a98c8b3ff1

  • SSDEEP

    24576:kNzKZsysUfcJZV7gjgjPHRS1BpmlNSa0LQ:azKZU+ZsjIbslNS3M

Malware Config

Extracted

Family

formbook

Version

3.9

Campaign

r30

Decoy

cjtestwp1.com

431873ko.info

trekofpersia.com

preppedcontainers.com

casaboquete.com

rnoec.info

absoluteblueskies.com

australianskincompany.com

junhao12131.com

andlynweb.com

lightningconnection.biz

scholarlyid.com

milicacerovic.com

toptravelbox.com

woodruna.com

thewritersrooms.com

reserectionx.com

wats.company

chenyirail.com

lumencos.com

Targets

    • Target

      0fa7205c9635cae1bfee33950b11b6c8_JaffaCakes118

    • Size

      902KB

    • MD5

      0fa7205c9635cae1bfee33950b11b6c8

    • SHA1

      bdac337264fbd8c74da9aa1fa8bf4ea46c55308c

    • SHA256

      e345918cd0083d4b1f5b2dc3c5d7b7c780fd19dfbb1c677bd482718bf034c14f

    • SHA512

      8c7603471798a80b62adb9749452855530749582a5e8cacba762a4a195d846126293332ce217ab2095b9a163ac97a5a57ff0d6d3ae3dcc79b8ab10a98c8b3ff1

    • SSDEEP

      24576:kNzKZsysUfcJZV7gjgjPHRS1BpmlNSa0LQ:azKZU+ZsjIbslNS3M

MITRE ATT&CK Matrix

Tasks