General
-
Target
7639eda1dbb366bc84e290cc589e1fb3_JaffaCakes118
-
Size
1.3MB
-
Sample
241027-18xfks1paj
-
MD5
7639eda1dbb366bc84e290cc589e1fb3
-
SHA1
25316e15b4be6b24ffc937f1af97a064014d9363
-
SHA256
6abf303ed71a7d1117ffc94e34ebbef57ab296584c1a801b8023a9e3bf0f91d4
-
SHA512
80622e4cd378c343a80bd21a647b2ffd60486b0207e62a6669a8b35ca102121646b63bcc0736356f12645d44dda05ec8e7b2924de3174f8f3f1e0d28b7cd660c
-
SSDEEP
24576:0WsOo+uTPMNjfN4bhDKN8Zvyuda7Shpm44zdD:0WsHrIhfNmgmh8Sho44zB
Static task
static1
Behavioral task
behavioral1
Sample
7639eda1dbb366bc84e290cc589e1fb3_JaffaCakes118.exe
Resource
win7-20240903-en
Malware Config
Extracted
formbook
4.1
t052
droogskateboards.com
royalspowersolution.com
lifebestmoves.com
rimpasac.com
crndhwv.icu
younggunrecords.com
rtdentalstaffing.com
2ktea.com
aiheim.com
cyberledger360.com
chrgo.com
1-alnafrica.com
reignbowssparkle.com
theexecutivestudio.com
stevebana.xyz
adenisikmerkezi.com
ralfboehm.com
chiyuedianzi.com
mjgqw.com
isiswilkinson.com
bolsasytapers.com
oanchun.club
xn--vcsr9nd2hesf.com
sebastian-linares.info
themiddlemore.com
youllsucceedonline.com
rustomjee.institute
7923599.com
msnbcrise.com
negotiablekite.com
qamishlo.net
heatwavesolutions.com
codebend.com
3muxue.com
clicklike.asia
digitalitalynews.com
cheapfreeruntrainers.com
goldexreturns.com
jqyba.com
banffjaspernow.com
cuttingedgegimmick.com
leswamp.com
uvaube.com
ourvideoindalastexas.com
wellcare-gs.com
nh96520.com
leviathanusa.com
weihnachtsmann-cux-umgebung.com
defenseinvestigation.com
ozgeerdoganyilmaz.com
ocd-diesel.com
munchui.com
finanteo.net
aimuseums.com
anneikaellc.com
yebhi.xyz
ohmygoood.xyz
vz329.com
zkitu.online
tlczj.com
ankikrit.com
catscratchco.com
citestaccnt1597752059.com
rapurp.club
liracosmeticsau.com
Targets
-
-
Target
7639eda1dbb366bc84e290cc589e1fb3_JaffaCakes118
-
Size
1.3MB
-
MD5
7639eda1dbb366bc84e290cc589e1fb3
-
SHA1
25316e15b4be6b24ffc937f1af97a064014d9363
-
SHA256
6abf303ed71a7d1117ffc94e34ebbef57ab296584c1a801b8023a9e3bf0f91d4
-
SHA512
80622e4cd378c343a80bd21a647b2ffd60486b0207e62a6669a8b35ca102121646b63bcc0736356f12645d44dda05ec8e7b2924de3174f8f3f1e0d28b7cd660c
-
SSDEEP
24576:0WsOo+uTPMNjfN4bhDKN8Zvyuda7Shpm44zdD:0WsHrIhfNmgmh8Sho44zB
-
Formbook family
-
Formbook payload
-
Suspicious use of SetThreadContext
-