General
-
Target
391975e669d455f1adecc5ca6a60f66a_JaffaCakes118
-
Size
630KB
-
Sample
240711-pky4qaydkg
-
MD5
391975e669d455f1adecc5ca6a60f66a
-
SHA1
727851ce8c287a4c080994f891ed78352cc93b8e
-
SHA256
c76a77d2c81deab2fda96cc7cfcd42ca3886522b254ab6fa7448c7db8692e00a
-
SHA512
6629176a34216a678bfc8c4bb24056fc03e8a6c4a5d1314ec8f2d5b156cb0610a3eba666c3a3a5ef95964e54d00b83a41d937e038ba5270adec3dd3830468ec8
-
SSDEEP
12288:6MzAvm9T+nin+nin+ni3AqeFsfWNhRaNoLDSFI3cFHh20QL+niu:6aAO9T+in+in+iQNsfWnL2FucFg+i
Static task
static1
Behavioral task
behavioral1
Sample
391975e669d455f1adecc5ca6a60f66a_JaffaCakes118.exe
Resource
win7-20240704-en
Malware Config
Extracted
formbook
4.1
n7ak
audereventur.com
huro14.com
wwwjinsha155.com
antiquevendor.com
samuraisoulfood.net
traffic4updates.download
hypersarv.com
rapport-happy-wedding.com
rokutechnosupport.online
allworljob.com
hanaleedossmann.com
kauai-marathon.com
bepbosch.com
kangen-international.com
zoneshopemenowz.com
belviderewrestling.com
ipllink.com
sellingforcreators.com
wwwswty6655.com
qtumboa.com
bazarmoney.net
librosdecienciaficcion.com
shopmomsthebomb.com
vanjacob.com
tgyaa.com
theporncollective.net
hydrabadproperties.com
brindesecologicos.com
sayagayrimenkul.net
4btoken.com
shycedu.com
overall789.top
maison-pierre-bayle.com
elitemediamasters.com
sharmasfabrics.com
hoshamp.com
myultimateleadgenerator.com
office4u.info
thaimart1.com
ultimatewindowusa.com
twoblazesartworks.com
airteloffer.com
shoupaizhao.com
741dakotadr.info
books4arab.net
artedelcioccolato.biz
tjqcu.info
teccoop.net
maturebridesdressguide.com
excelcapfunding.com
bitcoinak.com
profileorderflow.com
unbelievabowboutique.com
midlandshomesolutionsltd.com
healthywithhook.com
stirlingpiper.com
manfast.online
arikorin.com
texastrustedinsurance.com
moodandmystery.com
yh77808.com
s-immotanger.com
runzexd.com
meteoannecy.net
joomlas123.info
Targets
-
-
Target
391975e669d455f1adecc5ca6a60f66a_JaffaCakes118
-
Size
630KB
-
MD5
391975e669d455f1adecc5ca6a60f66a
-
SHA1
727851ce8c287a4c080994f891ed78352cc93b8e
-
SHA256
c76a77d2c81deab2fda96cc7cfcd42ca3886522b254ab6fa7448c7db8692e00a
-
SHA512
6629176a34216a678bfc8c4bb24056fc03e8a6c4a5d1314ec8f2d5b156cb0610a3eba666c3a3a5ef95964e54d00b83a41d937e038ba5270adec3dd3830468ec8
-
SSDEEP
12288:6MzAvm9T+nin+nin+ni3AqeFsfWNhRaNoLDSFI3cFHh20QL+niu:6aAO9T+in+in+iQNsfWnL2FucFg+i
-
Formbook payload
-
Suspicious use of SetThreadContext
-