General

  • Target

    JaffaCakes118_180a970240355483df0d96234e463d6fd8e61ddaf6b61b2a2256f3ff5eb42575

  • Size

    188KB

  • MD5

    da0307aa068c16b658b555f40f65ff92

  • SHA1

    366d2e4795a49dee79f3ac4d53ab403627b0db60

  • SHA256

    180a970240355483df0d96234e463d6fd8e61ddaf6b61b2a2256f3ff5eb42575

  • SHA512

    1f4cd5c49eab9b7738aa69ab74364ceae2bec64a53586f22c3ba2caa77c5bcb4bbf4e7063cf02e27e0394b392f86589b9f4b622a8c4776e38082a978d5be2775

  • SSDEEP

    3072:E4GLzrH1x9gGiEhTJWaq4//CbmPy6siyyOf4RKTPY5Y8Dciv8/:EDaehTHnImK7iyyOf4cTw5PLvK

Score
10/10

Malware Config

Extracted

Family

formbook

Campaign

8ch8

Decoy

EpMcJgRhXLgnbGVS1w==

PT1CWj241lPTuYLqz4cMQug=

iW5zo5XTlCyvPyc0hZ+/Ww==

3TiaoYnZM2R/2Jxzj/YY/wSb

gmIzUUXL9Y9CJH1OhZ+/Ww==

TdhX816H2NfWDDA8zg==

hrO4y8wSaEd20IZmhZ+/Ww==

hpV3JYmIC104sSI=

OO5xgWfn6pzCBp3kOas=

wJJtjXKWWuN0B4D/Zq+h+MJnVA==

cG5OST1xygeTEXTwN+gtU+o=

DEkjtjWwSl04sSI=

4jIoyEKj+0h76T8=

CBgIFRBAneBly2N666Yv0uI=

q7/M5ri8J104sSI=

X3FOWUW6vIeYk2QMLPV/GR/KuJlO71Nn

Pk5Xbmm7K2oM390ILKE=

AJLzkApAgKHYDDA8zg==

Z1BN4jzHtGx8ZiKO2DMnznIiArHLh6E=

1WnEWMU1nd7aSQ==

Signatures

  • Formbook family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_180a970240355483df0d96234e463d6fd8e61ddaf6b61b2a2256f3ff5eb42575
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections