General
-
Target
3ed94bb64fa06aafe96d8d823fac745b_JaffaCakes118
-
Size
577KB
-
Sample
240513-llqxyshf37
-
MD5
3ed94bb64fa06aafe96d8d823fac745b
-
SHA1
cd6e298d2ab38a1e41b42f11b760a188a562049a
-
SHA256
e77e182e673cccbe6863f7682fb061f6cb1c34502686d9950821c9408fa44a28
-
SHA512
95d40cd5f80375a92794fbf2e07ab6f05d0b8e39ee9c269099f19bed3767f29f7d10842d646610ddd7101eb8a5c5983a43aff23ac443ef522d499cd3980c414c
-
SSDEEP
12288:Yj1r6My4atW/2Tl/OxYVAjjMDYUQSb/iWpzNV0VXm6enva:Yj1DaM2Tl/OxYV0e/iW3wp
Static task
static1
Behavioral task
behavioral1
Sample
3ed94bb64fa06aafe96d8d823fac745b_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Extracted
formbook
4.1
so6
webshoppee.com
sangyey.com
3809775.com
canadelstores.com
halalmeans.com
karimafashion.com
tokochan.info
viralxch.com
ayazmorris.com
movilesgadgets.com
applyinvestments.com
discoverirelanduk.com
dreamonsolution.com
dziecikomfort.com
edinhosilva.life
forthathletic.com
mspi-ph.net
onlinetuneclass.com
trendyteezs.com
domaine-du-bruisset.com
just-edana.com
hgdrf.club
gumshuda.xyz
yahwehcontractor.com
gilbertloans.com
aekebers.info
lorientalappetizers.com
shoppersshelters.com
laverphoto.com
istnew.com
thekikibeauty.com
soulofshasta.com
websiteseotop.com
iggyo.com
truetoselfclothing.com
d-aitel.com
morekochplease.com
foxfoxassociates.com
revivephysiorehab.com
simswealth.com
hazetz.com
digimworld.com
hazelwoodpta.com
larstobiassen.club
affordablecarsca.com
commesse365.com
gomanaschool.com
gjbhd.club
chatguru.support
techwinoman.com
xn--xhqv5ne5uc05b.net
pursuingtails.com
sommervillephoto.com
tupelowilbert.com
pearlbets.com
praisedhealing.com
onebasketballpgh.club
armoredvehiclesdubai.com
zwlk.cloud
antillessalttherapy.com
marcajeapresion.com
homemadegoodsbysarah.com
citestaccnt1598681213.com
george-theodorou.com
toolsup.online
Targets
-
-
Target
3ed94bb64fa06aafe96d8d823fac745b_JaffaCakes118
-
Size
577KB
-
MD5
3ed94bb64fa06aafe96d8d823fac745b
-
SHA1
cd6e298d2ab38a1e41b42f11b760a188a562049a
-
SHA256
e77e182e673cccbe6863f7682fb061f6cb1c34502686d9950821c9408fa44a28
-
SHA512
95d40cd5f80375a92794fbf2e07ab6f05d0b8e39ee9c269099f19bed3767f29f7d10842d646610ddd7101eb8a5c5983a43aff23ac443ef522d499cd3980c414c
-
SSDEEP
12288:Yj1r6My4atW/2Tl/OxYVAjjMDYUQSb/iWpzNV0VXm6enva:Yj1DaM2Tl/OxYV0e/iW3wp
-
Formbook payload
-
Suspicious use of SetThreadContext
-