Behavioral task
behavioral1
Sample
JaffaCakes118_ca4cdfe29930db4863b2b59ba24caea0ce4ed86b9f9ef3bd8dd9149e92de0025.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
JaffaCakes118_ca4cdfe29930db4863b2b59ba24caea0ce4ed86b9f9ef3bd8dd9149e92de0025.exe
Resource
win10v2004-20241007-en
General
-
Target
JaffaCakes118_ca4cdfe29930db4863b2b59ba24caea0ce4ed86b9f9ef3bd8dd9149e92de0025
-
Size
184KB
-
MD5
59b0988c97e89c08794b50557abf74f6
-
SHA1
944e8ed30f00ad4902a7c549834e7acb17ccf1ba
-
SHA256
ca4cdfe29930db4863b2b59ba24caea0ce4ed86b9f9ef3bd8dd9149e92de0025
-
SHA512
835888b202700a6c639acfa147bb779be8e8e6920f043829170c61f38c7773be625adc142e8819851aa41142376d4ac90c7116a66dc3fce91ff537d7174db9a7
-
SSDEEP
3072:hU2XQegzNz7ZZJ6SZBm7FUTT5hLKc86+l56oLJCRbzmiPXjjg:8HZTZBmRyLKc86+r6oFZiPH
Malware Config
Extracted
formbook
4.1
g0ib
prospectminer.com
generatorrobux.com
cscec4bs.com
domain-here.com
estatson.com
albaiarq-logistics.com
jardindeldurazno.com
dirtsells.com
betterned.com
tdapshot.com
tecnobankhn.com
idconceptos.net
lilishenghuo.net
wewritechinese.com
clxkxmb.com
beautybychantol.com
lifeofaroma.com
nuclear-news.com
209-23-88-12.com
ralphlaurenmenshirts.net
noblehelps.com
lalecicekevi.com
dadapublicidad.com
vanguardinspections.mobi
brianwestjewelers.com
priorityappliance.repair
terrierpt.com
shayhk.com
aubreycalifornia.com
yiyuxin.xyz
gitscam.com
dailiesuniversity.com
aquagrp.net
trybeige.xyz
noirlabelhair.com
arthurvartan.com
ammarketinghelp.com
emkskincarehk.com
themurphyfamilyoffour.com
luisxe.info
vomdrok.com
nbfpainting.net
nisandaadanda.com
miresim.com
taumanhquang.com
daleapplegate.com
mowhawkindustries.com
maedazouen-osaka.com
shopsall.store
vgeti.com
touching-logistics.com
zoehqwg.icu
worthcraftinvesting.com
demae-otafuku.com
origins.zone
jurnalinvestasi.com
tuvideogratis.com
littlerivermail.com
internetescuela.com
depreme.com
justanewdomaintocheck454.com
vicodinexplained.com
naviguard.net
funnelsblocks.com
stickyflasks.com
Signatures
Files
-
JaffaCakes118_ca4cdfe29930db4863b2b59ba24caea0ce4ed86b9f9ef3bd8dd9149e92de0025.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 177KB - Virtual size: 177KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ