General
-
Target
23dc2a640442410ae6c23a73c2e2ae52_JaffaCakes118
-
Size
448KB
-
Sample
240508-jjgv6ahg7w
-
MD5
23dc2a640442410ae6c23a73c2e2ae52
-
SHA1
9933e0318d92fd2759068df828158e59035310c6
-
SHA256
bccde349905fcc2c6c393e3f8664d37e640fbd8ec43fbdf47ab899fe8b443344
-
SHA512
feb7bc136c8d08ac370f51e55b63a0fb595f59521fea3fc00eb2e7742e8368b26ecf1363d8030e96552333f7252e5f0ce6e6fec7b88e1c99caa3c59776d92a46
-
SSDEEP
6144:kKUuubOrWe8ohBkSxZKx95h2ktgZHcNOEcG5WpJvpc22:kUuGmohBdKz5h2kO8cVGMpJRM
Static task
static1
Behavioral task
behavioral1
Sample
23dc2a640442410ae6c23a73c2e2ae52_JaffaCakes118.exe
Resource
win7-20231129-en
Malware Config
Extracted
formbook
3.9
ts
tablenook.com
referenceyouraccount.com
google-adw.site
xiangyu0769.com
arvoliittaa-nouwakasaitama.com
www473234.com
oneudy.com
vleku.com
beyonnc.com
aguirre.solutions
51hdz.com
pipe.ventures
productandconcept.com
comprar-ahora.com
migraineproject.com
tinder-match.express
itacruisebig.live
cryptostrength.com
61999w.com
makits.net
hewrn.info
fcoaehv.com
excheq.mobi
lifewithoutsteroids.com
chunbaifloor.com
sosyalesnaf.net
hanolhanol.com
boyscard.com
xn--flsa-1ra.com
texashearingaid.com
internationaldiplomat.net
146paddington.com
administracionpublica.center
barbierhk.com
4jett.com
heluva.site
vitchain.com
cookingunlocked.com
kindfulnessyoga.com
vebag-solution.com
mississippimood.com
mtsb.online
emojifyg.com
knotjustties.net
facesofsales.com
adpatdesign.com
sexoestanoche.com
spirithouse.guru
xn--clre-moa.net
itamarcolombia.com
stellarmediums.com
startruckingfl.com
357sf.com
wwwcapify.com
nmdr1primeknitzebrapack.com
pleasehelp.support
isitthebarracuda.com
innovatehlth.com
starfleetcartography.com
tecmouv.com
re684.com
cosmetiques-beaute.net
auctionhouselive.com
nottinghamtaxii.com
apevy.com
Targets
-
-
Target
23dc2a640442410ae6c23a73c2e2ae52_JaffaCakes118
-
Size
448KB
-
MD5
23dc2a640442410ae6c23a73c2e2ae52
-
SHA1
9933e0318d92fd2759068df828158e59035310c6
-
SHA256
bccde349905fcc2c6c393e3f8664d37e640fbd8ec43fbdf47ab899fe8b443344
-
SHA512
feb7bc136c8d08ac370f51e55b63a0fb595f59521fea3fc00eb2e7742e8368b26ecf1363d8030e96552333f7252e5f0ce6e6fec7b88e1c99caa3c59776d92a46
-
SSDEEP
6144:kKUuubOrWe8ohBkSxZKx95h2ktgZHcNOEcG5WpJvpc22:kUuGmohBdKz5h2kO8cVGMpJRM
-
Formbook payload
-
Suspicious use of SetThreadContext
-