General
-
Target
f2dbb356ab48fcab6f0ef2ceb6d8cebb_JaffaCakes118
-
Size
917KB
-
Sample
241215-hzd9jaxlds
-
MD5
f2dbb356ab48fcab6f0ef2ceb6d8cebb
-
SHA1
6de618418c322dd8e9019013658c37523d56a18d
-
SHA256
73c9e89d51022a4059395c2849313595439ca715a36d7383e9708bc6421aa628
-
SHA512
0937c20f77486158d7a5583b63d5a98fe86dfbc57e566a417ac7f9c7768c9ebba589bb36f16ee7488e5405fbff34622c0ce07538c2384ccef54b62cf59243a33
-
SSDEEP
12288:GAkCfhwf7HK7zQUKRqVB2FTBdjgrPSAL+l7VdSlQCVngOXiMzUkBCFI+A:eCzsiVB2N3jQaALtQCVfXTFB
Static task
static1
Behavioral task
behavioral1
Sample
f2dbb356ab48fcab6f0ef2ceb6d8cebb_JaffaCakes118.exe
Resource
win7-20240903-en
Malware Config
Extracted
xloader
2.3
bp39
glembos.com
adjud.net
beautifyoils.com
chilewiki.com
duxingzi.com
happygromedia.com
restpostenboerse.com
vowsweddingofficiants.com
ladingjiwa.xyz
keepmakingefforts-001.com
yeniao.net
eyildirmaz.com
sayanghae.com
promoteboost.com
lzft.net
proudindiacompany.com
birchwoodmeridianlink.com
mesinionisasi.com
wwwrigalinks.com
wewearthepants.com
showtimerisingstarz.com
conheonet.club
bigdogshirlfox.com
xn--ehqw60f1ex.club
redmondgrowth-usa.com
myfcmtestsite.com
dreamersclubstudios.com
bulukx.com
netdetameruweb.xyz
djibnb.com
malikakids.com
11298.xyz
shuanglinsm.com
blackliontv.com
louiskochins.com
successfullsolutionworks.com
myrcmall.com
letsplayandgo.com
history-at-home.com
twentyfour4academy.com
immersebyacfw.com
grazestyle.com
asuatlalumni.com
akmh.pro
oldsportapparel.com
alphaprimfi.com
qgrandcafe.com
draggonlng.com
publish.mobi
myuhcvisioni.com
susanpatersonwriter.com
1033308.com
vaca.travel
djmarieco.com
realiszt.com
am-evestment-training.com
plaguelanguage.com
kcpinvest.com
wedilivervc.com
stopneuralink.com
alyvmarli.com
disseminacao.com
testaker.com
officee65.com
piadineriae45.com
Targets
-
-
Target
f2dbb356ab48fcab6f0ef2ceb6d8cebb_JaffaCakes118
-
Size
917KB
-
MD5
f2dbb356ab48fcab6f0ef2ceb6d8cebb
-
SHA1
6de618418c322dd8e9019013658c37523d56a18d
-
SHA256
73c9e89d51022a4059395c2849313595439ca715a36d7383e9708bc6421aa628
-
SHA512
0937c20f77486158d7a5583b63d5a98fe86dfbc57e566a417ac7f9c7768c9ebba589bb36f16ee7488e5405fbff34622c0ce07538c2384ccef54b62cf59243a33
-
SSDEEP
12288:GAkCfhwf7HK7zQUKRqVB2FTBdjgrPSAL+l7VdSlQCVngOXiMzUkBCFI+A:eCzsiVB2N3jQaALtQCVfXTFB
-
Xloader family
-
Xloader payload
-
Suspicious use of SetThreadContext
-