Extracted

• • Target

    c039dcce6b3d0c6d88348e1133a4aa0b_JaffaCakes118

  • Size

    828KB

  • MD5

    c039dcce6b3d0c6d88348e1133a4aa0b

  • SHA1

    a9dfef13cb1ec8ad80a0a612d8c470b776f5ef4c

  • SHA256

    f92291984ec15b81a6940b5fc87557977800e5edbd4c17c175097d27eba1d549

  • SHA512

    fba57c49420eaf571d97d15b25bde4f90b8671f2436d1a471647687a306011d89d45b0a06943be999b82c38d6e2cc2c3bd6fbe7c0ec7b696e73c36c920c434e9

  • SSDEEP

    12288:3hcaI47p97my19u1LD3RO3sCGsxz+M5XQtV+rBtsbMjkW:3OaI4thmuwtDUGe+MyVUBtU

  Score

  10^/10

  formbookdediscoveryratspywarestealertrojan

  • Formbook

    Formbook is a data stealing malware which is capable of stealing data.

    trojanspywarestealerformbook

  • Formbook payload

    rat

  • Suspicious use of SetThreadContext

  behavioral1behavioral2