General
-
Target
0cc094b93ea3fe9dcf1897e41d8ef875_JaffaCakes118
-
Size
881KB
-
Sample
241002-2nr6ssvdrc
-
MD5
0cc094b93ea3fe9dcf1897e41d8ef875
-
SHA1
26a40e556b826052196a2bcea93d1962ea1a6eaf
-
SHA256
811745e059225a9d2c1e3a283c2895589f36332a5e90c6cbe3425b841b3b024d
-
SHA512
c98f2a184be3d15a7dbb3c7d882d3a8848dfd6709e461457ba84170a7ceea558f6494ab73c397144091e1715add5623b611c48078576c44c44a509425898c091
-
SSDEEP
12288:Y94in3qGaNHEyC9/oR9gy5ZHK7zWQDLDhjiKznNWOoyw1rFYi/tOfeAD7GK:8Pp9AR95SlLDxn0ORw1xYSt7e7GK
Static task
static1
Behavioral task
behavioral1
Sample
0cc094b93ea3fe9dcf1897e41d8ef875_JaffaCakes118.exe
Resource
win7-20240903-en
Malware Config
Extracted
xloader
2.3
q4kr
realmodapk.com
hanoharuka.com
shivalikspiritualproducts.com
womenshealthclinincagra.com
racketpark.com
startuporig.com
azkachinas.com
klanblog.com
linuxradio.tools
siteoficial-liquida.com
glsbuyer.com
bestdeez.com
teens2cash.com
valleyviewconstruct.com
myfortniteskins.com
cambecare.com
csec2011.com
idookap.com
warmwallsrecords.com
smartmirror.one
alertreels.com
oiop.online
61cratoslot.com
hispanicassoclv.com
pennyforyourprep.com
fayansistanbul.com
superbartendergigs.club
herr-nourimann.com
oatkc.net
romahony.com
sportcrea.com
crystalnieblas.com
lcmet.com
nwaymyatthu-mm.com
edsufferen.club
apispotlight.com
shadowcatrecording.com
capwisefin.com
themesinsider.com
kadrisells.com
db-82.com
rentyoursubmarine.com
rin-ronshop.com
donzfamilia.com
loyalcollegeofart.com
socialize.site
shadesailstructure.com
smcenterbiz.com
zcdonghua.com
1420radiolider.com
ckenpo.com
trucksitasa.com
getthistle.com
usvisanicaragua.com
josiemaxwrites.com
dehaagennutraceuticals.com
noiaapp.com
blinbins.com
getreitive.com
turmericbar.com
manifestwealthrightnow.com
garagekuhn.com
longviewfinancialadvisor.com
hallworthcapital.com
bodymoisturizer.online
Targets
-
-
Target
0cc094b93ea3fe9dcf1897e41d8ef875_JaffaCakes118
-
Size
881KB
-
MD5
0cc094b93ea3fe9dcf1897e41d8ef875
-
SHA1
26a40e556b826052196a2bcea93d1962ea1a6eaf
-
SHA256
811745e059225a9d2c1e3a283c2895589f36332a5e90c6cbe3425b841b3b024d
-
SHA512
c98f2a184be3d15a7dbb3c7d882d3a8848dfd6709e461457ba84170a7ceea558f6494ab73c397144091e1715add5623b611c48078576c44c44a509425898c091
-
SSDEEP
12288:Y94in3qGaNHEyC9/oR9gy5ZHK7zWQDLDhjiKznNWOoyw1rFYi/tOfeAD7GK:8Pp9AR95SlLDxn0ORw1xYSt7e7GK
-
Xloader payload
-
Suspicious use of SetThreadContext
-