General
-
Target
415fb602fea93197946574b97294283f_JaffaCakes118
-
Size
912KB
-
Sample
240514-nxcwksed93
-
MD5
415fb602fea93197946574b97294283f
-
SHA1
3f050757b092a2b2449007d45632168caac1e2d9
-
SHA256
2817e204072508a6023f199121144d5d0eb22e7bb04926fc42defea530fdf8e4
-
SHA512
26efd87b79fdde653a0b07e57dc398b95928332efdc784ddab173ed6db3904cd7f9c8bb19c60efa85d67870a7c6a605d17167f4c9cf6bc54a538853bbdebd6bd
-
SSDEEP
24576:E69dI9Dl7bPF4sm9dNdNByMEfAm0J6tZXEo:E696/ieAm0J6T
Static task
static1
Behavioral task
behavioral1
Sample
415fb602fea93197946574b97294283f_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Extracted
formbook
4.1
kzy
wolffdagrosa.net
visithonduras.coffee
soulvegancuisine.com
tjssshx.com
thehero5wow.date
dubbiemunchies.com
comovencerorefluxo.com
hell.delivery
skitki.top
graceyourspaceorganizing.com
dressmybreath.com
fukuoka.today
camphicks.com
xenmex.com
marriedlesbian.com
myfinancebabe.com
sanachain.com
paigeclass.com
centroctem.com
sanhetech.com
climaxins.com
imworkingcantyouseethat.com
nidebeibao.com
tamo.ltd
bayzel.com
graciakyb.com
ppeuuh.info
fuchsthce.com
sailing-ship.com
shshangshan.com
umroh2018.com
ramenmadrid.com
kiswfb5y3t.online
aozorayu.com
royal-woodcraft.com
piraeusonlinekrediti.com
sheahealthylife.com
thestoriesofa.com
hoyat.net
boswellsavawam.com
chefaryah.com
zmygcww.com
enjarage.com
hermosacarrentals.com
xn--husw9zrks.com
chillest.net
maisons-gannat.com
nbzpm.info
modatatoo.com
moeroga.info
thenewlifeentertainment.com
fogsnitch.com
roofcertificationnearme.info
plannergenie.com
opebet358.com
mauriciomoran.com
golden-invest.win
geneticdisordertherapies.com
embertext.com
kuikuiapp.com
getbacktobusiness.info
qledexpo.com
trelatedtravels.com
abbauction.com
trancus.com
Targets
-
-
Target
415fb602fea93197946574b97294283f_JaffaCakes118
-
Size
912KB
-
MD5
415fb602fea93197946574b97294283f
-
SHA1
3f050757b092a2b2449007d45632168caac1e2d9
-
SHA256
2817e204072508a6023f199121144d5d0eb22e7bb04926fc42defea530fdf8e4
-
SHA512
26efd87b79fdde653a0b07e57dc398b95928332efdc784ddab173ed6db3904cd7f9c8bb19c60efa85d67870a7c6a605d17167f4c9cf6bc54a538853bbdebd6bd
-
SSDEEP
24576:E69dI9Dl7bPF4sm9dNdNByMEfAm0J6tZXEo:E696/ieAm0J6T
-
Formbook payload
-
Suspicious use of SetThreadContext
-