General
-
Target
f7e38bf7062e2476eb111fd95288e2b5_JaffaCakes118
-
Size
777KB
-
Sample
240926-jh6swsvfrq
-
MD5
f7e38bf7062e2476eb111fd95288e2b5
-
SHA1
7ef1768ac9a9860b75503312eb1455f4e300cdbf
-
SHA256
a815ffed78a03eb9a180c0a70b50ce7c6f283fd98e0d590ebbb5f1e0b35fcd65
-
SHA512
c11b9b23f33ba102cdff70420f5bbe68a1ff88b244df2c82cfbaa1b996d1162c2db9384238e8a414a518e5aace4be1736f5399c46f457eb695bac40384a1f215
-
SSDEEP
12288:G6foWJcSbkFHcb7/mY/TGhQOPT4WfwRfWROQ5g0x6dgX6okimIf9vSgBS/G6OxfM:RJPb7/bT2D5giGfFaq
Static task
static1
Behavioral task
behavioral1
Sample
f7e38bf7062e2476eb111fd95288e2b5_JaffaCakes118.exe
Resource
win7-20240903-en
Malware Config
Extracted
xloader
2.3
uszn
animegriptape.com
pcpnetworks.com
putupmybabyforadoption.com
xn--jvrr98g37n88d.com
fertinvitro.doctor
undonethread.com
avoleague.com
sissysundays.com
guilhermeoliveiro.site
catholicon-bespeckle.info
mardesuenosfundacion.com
songkhoe24.site
shoecityindia.com
smallbathroomdecor.info
tskusa.com
prairiespringsllc.com
kegncoffee.com
clicklounge.xyz
catholicendoflifeplanning.com
steelobzee.com
xiknekiterapia.com
whereinthezooareyou.com
maglex.info
dango3.net
sqjqw4.com
theparadisogroup.com
karthikeyainfraindia.com
luewevedre.com
helpwithmynutrition.com
lengyue.cool
pbipropertiesllc.com
glidedisc.com
sz-rhwjkj.com
776fx.com
kamanantzin.com
grandwhale.com
trump2020shop.net
gentilelibri.com
jarliciouslounge.com
dgcsales.net
hypno.doctor
holidayinnindyairportnorth.com
buysellleasewithlisa.com
girishastore.com
tinynucleargenerators.com
crystalphoenixltd.com
lapplify.com
bailbondinazusa.com
michaelmery.com
tripleecoaching.com
fastenerspelosato.net
horisan-touki.com
marketingavacado.com
centrebiozeina.com
xn--3etz63bc5ck9c.com
rhemachurch4u.com
homeschoolangel.com
romeysworld.com
themixedveggies.com
queendreea.club
epedalflorida.com
blutreemg.com
nongfupingtai.com
shikshs.com
besteprobioticakopen.online
Targets
-
-
Target
f7e38bf7062e2476eb111fd95288e2b5_JaffaCakes118
-
Size
777KB
-
MD5
f7e38bf7062e2476eb111fd95288e2b5
-
SHA1
7ef1768ac9a9860b75503312eb1455f4e300cdbf
-
SHA256
a815ffed78a03eb9a180c0a70b50ce7c6f283fd98e0d590ebbb5f1e0b35fcd65
-
SHA512
c11b9b23f33ba102cdff70420f5bbe68a1ff88b244df2c82cfbaa1b996d1162c2db9384238e8a414a518e5aace4be1736f5399c46f457eb695bac40384a1f215
-
SSDEEP
12288:G6foWJcSbkFHcb7/mY/TGhQOPT4WfwRfWROQ5g0x6dgX6okimIf9vSgBS/G6OxfM:RJPb7/bT2D5giGfFaq
-
Xloader payload
-
Suspicious use of SetThreadContext
-