General

  • Target

    JaffaCakes118_037d200f2e5203637a070fedc016235a3c5c1b35e357f959e9b78f28365ba0ed

  • Size

    188KB

  • MD5

    12a17862e6512ce44fc012cc5ea52a7c

  • SHA1

    0de2e0b4b72896b70a733254ea235955b11be414

  • SHA256

    037d200f2e5203637a070fedc016235a3c5c1b35e357f959e9b78f28365ba0ed

  • SHA512

    1bd595ab7d06e59c931790818c24a985569e5e3e377efe5090c198cdb4b5799bc79aa45d6dc319f0668549ce918199410d58d21aae5c996ff3630949befdd732

  • SSDEEP

    3072:IiorfXLXyroMMfVjSsxWw77176Ty2guVwhVv/tz5S0U9nqTrD4X37L:5oaniV2sNBUyjuWhVvFz5SN9nKD47L

Score
10/10

Malware Config

Extracted

Family

formbook

Campaign

inai

Decoy

g4lCWp3UdGTjeRVCemUUCy88gZag

2/3mottmBPx1TKvi

39WJoVjJV/cDo1YbGus=

e2ZdaeUL+4tYSC2e9oIQzxk8gZag

7Lo1cDWkiR/eHBi5ejT3kJ8=

/MwlQf2Yc9aZ1/GZcQ==

kEmy7uwn+ik=

XiTvR/zylKe5

4LkaQbOvQWIYx1aK0FBNhYg=

GOh5NP6o3f0ubsM=

oQfSxUtwaALCZLYgL+k=

DQ3rMG+YWciC1kVkfljmRInn

vLeCFvWTdewizA==

gnsdNR2bedmYrto=

BrxvC7XrxODpLsf3cZmAwBqUrogAPg==

Q99EeN/GSmjptGrvaZJr

Tc7jf4Pqmai5

0ZNP5oe1Uj+6VLYgL+k=

8b8qrrBVIMg1b631

PwFFZd66fm6u

Signatures

  • Formbook family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_037d200f2e5203637a070fedc016235a3c5c1b35e357f959e9b78f28365ba0ed
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections