General
-
Target
5d7ccd79635f7101a35091fab2dbcc76_JaffaCakes118
-
Size
352KB
-
Sample
240520-gje1fsec73
-
MD5
5d7ccd79635f7101a35091fab2dbcc76
-
SHA1
24caef2e796d9ed991a0411be0bf4d4320746dfc
-
SHA256
45856c169355ee7101dc2789e1a476ab2df3a48a9deccb6e3927b87ee3781f63
-
SHA512
803198e3e5edaaf1b5bbe4b46f877808afbe2ca681b731d9d5987befb164e7ca73bac6ef49c16479b5bb2b05a4d4690cd3658fa2c92c7e718b39fccd2f9bcffc
-
SSDEEP
6144:3a1tfKj5T9F19/CcKKgDfcmQXX/9XniChgrVXIv:mtfKjzTpwKQdASCheV
Static task
static1
Behavioral task
behavioral1
Sample
5d7ccd79635f7101a35091fab2dbcc76_JaffaCakes118.exe
Resource
win7-20240419-en
Malware Config
Extracted
formbook
3.9
llg
www8557q.com
112161.info
ys-pictures.com
ghgh44.com
worldgametours.com
bthrdq.com
ipmptraining.com
natoriaray.com
colourfulberries.download
ar-consulting.net
yourgoddessrocks.com
fluencymatters.info
marmarisdogumfotografcisi.com
akifgroups.com
comma-ae.com
jmgtunes.com
hermosacanas.com
stephaniebelenphoto.com
xn--2z1bo89bb0e.com
keepsmilinglabs.com
hysteryafest.com
cadlanka.com
aceroscujanos.com
mchenryfinancialgroup.net
khnox.info
happyeasydiet.com
ukrainecialotto.com
ebonesnet.com
0n2fivewell.men
apolloelectricandcontrols.com
ufirstfit.com
tommyhuthansel.com
kuststadenshk.com
officialmarylynnrajskub.com
redpingwinist.net
xn--1lq90ixhs42r.com
plupin.com
zfc8818.com
comment-faire-des-pancakes.com
leonardreed.com
diandangzuanshi.com
solasnews.com
qiankundou.net
alexanderclamor.com
wallers-watches.com
startupondemand.com
canondrivercenter.com
amelieparis.net
morebags2017.com
fitnessness.com
rightn0w.site
tenergyplay.com
dmpatterson.us
hackingforsuccess.com
knoobiindustries.com
aelys-invest.com
test121212111221.accountant
trmb.tech
resurfstore.biz
ontimehelpexperts.com
bevanguardmusic.com
chainsfinance.com
ibkjny.men
coronabreeze.net
samperd.com
Targets
-
-
Target
5d7ccd79635f7101a35091fab2dbcc76_JaffaCakes118
-
Size
352KB
-
MD5
5d7ccd79635f7101a35091fab2dbcc76
-
SHA1
24caef2e796d9ed991a0411be0bf4d4320746dfc
-
SHA256
45856c169355ee7101dc2789e1a476ab2df3a48a9deccb6e3927b87ee3781f63
-
SHA512
803198e3e5edaaf1b5bbe4b46f877808afbe2ca681b731d9d5987befb164e7ca73bac6ef49c16479b5bb2b05a4d4690cd3658fa2c92c7e718b39fccd2f9bcffc
-
SSDEEP
6144:3a1tfKj5T9F19/CcKKgDfcmQXX/9XniChgrVXIv:mtfKjzTpwKQdASCheV
-
Formbook payload
-
Suspicious use of SetThreadContext
-