General
-
Target
246b8a3300e87c961b0cb85a1d485597_JaffaCakes118
-
Size
862KB
-
Sample
240508-mhq9zsfh8s
-
MD5
246b8a3300e87c961b0cb85a1d485597
-
SHA1
31f92a80c5c88995fd6c29c75559d428fd1eb904
-
SHA256
5155cbca08d97a5eaf47b303ecf752cc305bb273308ce79a67bdc4b35d2f41d0
-
SHA512
4b79dfc44aeb4c3952d7038986d23eff1f0b528b61d400803c732c4b3e78415af9f72b5acf1e9a251420546a4b87604b8a4f2704517efad4f0de9eebdc5ab01d
-
SSDEEP
12288:mbly675yJo0juRXhT4MghC35C6HWYeOmtHL+Qmznaj1eClK8KbCiZW:R6ca0jux+Bs3HjmtHLXxeAz0V
Static task
static1
Behavioral task
behavioral1
Sample
246b8a3300e87c961b0cb85a1d485597_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
formbook
4.1
btl
kyliefeet.com
scotia8web.com
nsclcdrivers.com
that-store.com
tempestchs.com
jonathandowney.info
skincentrolaser.com
villagetherapyatlanta.com
thesurgeshow.com
rwflottery.com
mutinysoundproject.com
snyxsz.com
sahovic.net
alexaneroux.com
nataliamedellinm.com
aplofer.info
leagacyrealty.com
ropescan.com
allintogo.com
punjabifactory.com
xn--ssse-gedanken-wob.com
arh68.com
menevadoinvacanza.cloud
ezsternthrusters.com
mckennapropertymangement.com
comtiger.com
myriammainguy.com
119moore.com
weymuff.com
gracelandremodeling.com
2cassis.com
slcbenefit.com
sonowaterfront.com
pureledlighting.com
jansautosales.com
alisyabusana.com
ampersandwine.com
high55.com
fideleitiy.com
f-healthcare.com
spatuina.com
alkasood.com
healthedo.com
smartcbda.com
gaminotransport.com
mineminicar.mobi
xwglory.com
integralhomemn.com
earthslast.net
fatbraintoya.com
stopsegregation.net
shock-supply.net
bmcl8.com
littleangelco.com
acquapella.com
myelearnportal.com
chelseashalza.com
tilnie.com
corrigersontexte.com
withouthuela.com
anthropos.info
dewo-commerce.com
munashopondomain.com
panorama-advisors.com
litbia.com
Targets
-
-
Target
246b8a3300e87c961b0cb85a1d485597_JaffaCakes118
-
Size
862KB
-
MD5
246b8a3300e87c961b0cb85a1d485597
-
SHA1
31f92a80c5c88995fd6c29c75559d428fd1eb904
-
SHA256
5155cbca08d97a5eaf47b303ecf752cc305bb273308ce79a67bdc4b35d2f41d0
-
SHA512
4b79dfc44aeb4c3952d7038986d23eff1f0b528b61d400803c732c4b3e78415af9f72b5acf1e9a251420546a4b87604b8a4f2704517efad4f0de9eebdc5ab01d
-
SSDEEP
12288:mbly675yJo0juRXhT4MghC35C6HWYeOmtHL+Qmznaj1eClK8KbCiZW:R6ca0jux+Bs3HjmtHLXxeAz0V
-
Formbook payload
-
Suspicious use of SetThreadContext
-