General

  • Target

    3f712f3ca11575925123809a5a59a832_JaffaCakes118

  • Size

    300KB

  • Sample

    240513-pdpayaeh33

  • MD5

    3f712f3ca11575925123809a5a59a832

  • SHA1

    7b1e18814d47436b379b91112f15321be943181b

  • SHA256

    9b40c28b947c992a9dcd9c12bb9d9721641bdd63048621c26daed7fed37fd736

  • SHA512

    8924a13b914be3d4d2efc33787db0a1404f4cec5ab7dc7f602d2ba1bf3d98db01931a550796aa7e8a52514e181bde8daf555fd1c07d140decd00e84faedd2680

  • SSDEEP

    3072:vkfuNtj+ODRLymXwmYOdmPo11s+ZcvzVnWyGqrVpzDLPeWcjnQuG5CuQ1AFbzlUq:vkfGJ+4Rimr0P81FZW6nQoW1JUjjNfA

Malware Config

Extracted

Family

formbook

Version

3.9

Campaign

lib

Decoy

qbloknl.com

lynxrossendale.com

warkaciyaaraha.com

xinchangweb.com

guangdongjiadianguan.com

henrysbuyandsell.com

lzy100.com

digitalincome247.com

rossimc.com

concept-storemakers.com

startfreedomcom.info

happyblackwell.com

tucupouni.com

lighthousehouse.com

419westmainst.com

roswelleffect.com

timjerominek.com

laigouwula.com

acmaolivos.com

goucaime.com

Targets

    • Target

      3f712f3ca11575925123809a5a59a832_JaffaCakes118

    • Size

      300KB

    • MD5

      3f712f3ca11575925123809a5a59a832

    • SHA1

      7b1e18814d47436b379b91112f15321be943181b

    • SHA256

      9b40c28b947c992a9dcd9c12bb9d9721641bdd63048621c26daed7fed37fd736

    • SHA512

      8924a13b914be3d4d2efc33787db0a1404f4cec5ab7dc7f602d2ba1bf3d98db01931a550796aa7e8a52514e181bde8daf555fd1c07d140decd00e84faedd2680

    • SSDEEP

      3072:vkfuNtj+ODRLymXwmYOdmPo11s+ZcvzVnWyGqrVpzDLPeWcjnQuG5CuQ1AFbzlUq:vkfGJ+4Rimr0P81FZW6nQoW1JUjjNfA

MITRE ATT&CK Matrix

Tasks