General
-
Target
59df573b34d0d5282862bd548011424b_JaffaCakes118
-
Size
1.4MB
-
Sample
240519-l83j9sdf5s
-
MD5
59df573b34d0d5282862bd548011424b
-
SHA1
4cb0915cac5ab982a67e561019b063a6b025beed
-
SHA256
1c553d2c0fd757eab6f7d0b7626f58c6a5b9d880977408096d45f316064afb11
-
SHA512
f2103f1c1e3698ab32140f0c350a1ee26620af5d7629f0edd7bfbe554659908824390e491d2261f8095d85b7b5c7149a26970a515ea5aaf72e9a31be8609000d
-
SSDEEP
24576:9AHnh+eWsN3skA4RV1Hom2KXMmHavw4qpoN5zlPhmch5:ch+ZkldoPK8YavWoLp0G
Static task
static1
Behavioral task
behavioral1
Sample
59df573b34d0d5282862bd548011424b_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Extracted
formbook
3.9
wo
bcmigt.com
spiraltowellness.com
n1112.com
zhangyuping8.com
mthopehauntedhayride.com
heseniorlivingnow.live
ironkalip.com
ebookadmin.com
jacobssf.net
whosdownnewyork.com
8uwxb7b-7yxl754.com
bees.reisen
xn--y8jte7b913sqdjhiam386a.com
fixallthefiles.com
zimagazine.com
stylelesh.com
burnque.com
blogbelezafeminina.info
rbnbtzf.info
lifeoflin.com
legallguillaume.com
cgrsmi.com
i-car.group
gzshfs.net
mydigitalart.net
repair-help-frankfurt.com
topqualitywesterngear.com
kiwitiny.com
rdfinsaat.com
freeprojectalert.info
timegallery.online
jiaowomj.com
technoforall.com
inspired7.com
mcurls.com
cwvomc1dkh.com
centrey.com
jvfaql.tech
merkur-fracht.com
empireusa.info
emelina.live
easybookmarkings.win
nvzhifu.com
almalik-host.com
umrohpintar.com
holisticlifevacations.com
giantjx.com
stir.social
kazoman.com
cherylluquire.com
trendsetterliving.net
kmsgnk120.com
xxvi.business
purplalk.com
bushelpeckneck.com
parknload.info
kwekabaw.com
fg176.net
inframespecs.com
heatpay0011.com
drdrapeblinds.com
albanyinspectionservices.com
bestmatrimonialscripts.com
popkitchenseattle.com
menflax.com
Targets
-
-
Target
59df573b34d0d5282862bd548011424b_JaffaCakes118
-
Size
1.4MB
-
MD5
59df573b34d0d5282862bd548011424b
-
SHA1
4cb0915cac5ab982a67e561019b063a6b025beed
-
SHA256
1c553d2c0fd757eab6f7d0b7626f58c6a5b9d880977408096d45f316064afb11
-
SHA512
f2103f1c1e3698ab32140f0c350a1ee26620af5d7629f0edd7bfbe554659908824390e491d2261f8095d85b7b5c7149a26970a515ea5aaf72e9a31be8609000d
-
SSDEEP
24576:9AHnh+eWsN3skA4RV1Hom2KXMmHavw4qpoN5zlPhmch5:ch+ZkldoPK8YavWoLp0G
-
Formbook payload
-
Suspicious use of SetThreadContext
-