General
-
Target
7289b3c7c4055d40cf85ca7731497d34_JaffaCakes118
-
Size
495KB
-
Sample
240525-tqyscsac3t
-
MD5
7289b3c7c4055d40cf85ca7731497d34
-
SHA1
6b6a8a835b8e8d7a26d3fc57d0effee30a49e9d4
-
SHA256
bc5aa7b4f419065ed0382ef58383b06f8e578d12a0b0b7973b1de9f549143307
-
SHA512
60b2370176c82a5fe84a6680af7b9da7c44f81cf6fecc6db719d67644fc092e620ac9d5a9981bccc79a8f2622936dc5a9eae2abd070d41865d4985a981b98199
-
SSDEEP
6144:sCypZJUu0qK1hMyPnQLCHb7A2GhNXlvlvlLMLJb+UYRHfw1t3+mxOqApSRjXj3w3:nhMSQEb7A2iNYujmgqAg9L01EVx
Static task
static1
Behavioral task
behavioral1
Sample
7289b3c7c4055d40cf85ca7731497d34_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Extracted
formbook
4.1
aofk
theplanetviral.com
51gayporn.com
mesathean.com
vaguidelines-updated.com
newuniverse.net
daveslehighvalleyvac.com
balikesirmasajsalonuu.com
chepinclub.com
shkafko.com
xn--eh3b11fp3f4me.com
qgochyljokbjjx.com
ashleetaylor.net
neckbeardnation.com
jordanthedev.com
pnwminiacs.com
tastyafrecipes.com
postmortemrecycled.com
bodypiercingblog.com
northwestclassicfirearms.com
manilagogo.com
beautifulbridesandbeyond.com
ceptenmuzikindirelim.com
kiacraft.com
brc-beei.com
maiscash.online
holdingeggs.com
carrymykeys.com
prosolutionsgroups.com
valueaddedindustries.com
00307r.com
rvp-archphoto.net
emarijuanarx.com
alejandrajazo.com
minlisc.com
c-opt.net
chairre.online
mycoin.exchange
academiefutsal.com
braggsservices.com
bolsafamilia2019.com
nesmx.com
nicholashohoho.com
corki.site
wellsnextthesealife.com
marydziek.com
venicecast.com
everfileit.info
lushe12121.com
rev-gaming.com
appliancerepairnwa.com
libertarian.site
idefoto.com
aircon.store
antojoboricuapr.coffee
brainpowersound.com
thetangleiota.info
g3391.com
story-learning.info
amenglishcenter.com
29chain.com
pranaavgroup.com
usainshape.com
553349.top
ipsoconference.com
mansiobok2.info
Targets
-
-
Target
7289b3c7c4055d40cf85ca7731497d34_JaffaCakes118
-
Size
495KB
-
MD5
7289b3c7c4055d40cf85ca7731497d34
-
SHA1
6b6a8a835b8e8d7a26d3fc57d0effee30a49e9d4
-
SHA256
bc5aa7b4f419065ed0382ef58383b06f8e578d12a0b0b7973b1de9f549143307
-
SHA512
60b2370176c82a5fe84a6680af7b9da7c44f81cf6fecc6db719d67644fc092e620ac9d5a9981bccc79a8f2622936dc5a9eae2abd070d41865d4985a981b98199
-
SSDEEP
6144:sCypZJUu0qK1hMyPnQLCHb7A2GhNXlvlvlLMLJb+UYRHfw1t3+mxOqApSRjXj3w3:nhMSQEb7A2iNYujmgqAg9L01EVx
-
Formbook payload
-
Suspicious use of SetThreadContext
-