General

  • Target

    JaffaCakes118_c466d9a12e1ed5d9e3bb8062527775a1cc3b69596b4552c405a1d93870cc075e

  • Size

    188KB

  • MD5

    0de86a2e5ed152bdc07532f8f409727b

  • SHA1

    575cbaaf5d680037a4116e8fa759a0429445cf23

  • SHA256

    c466d9a12e1ed5d9e3bb8062527775a1cc3b69596b4552c405a1d93870cc075e

  • SHA512

    0381ada315fe2e15a36ec7c6b43922e9b396b88f75f7f13eb57d1eda10baac21ddf21f00cdda6da74bb57f248e729eb56bc13213a552fda382f9e15fdbfe0c4d

  • SSDEEP

    3072:dzs49sSRrwmpaBTqJW6sE4VHT6845/fwBziLPoYEXwlYxpqJK/:dE+c6Yqfsru8U/o1EPoYmwlYZ

Score
10/10

Malware Config

Extracted

Family

formbook

Campaign

figc

Decoy

47NW9KXrL+jgHgkaH/SBm7e9+eE=

ZiDP2+PQatbRpw==

McLVGasjijBUTSo=

7pCDHTcZBQCyFKFSb/4E

YwIKwvCFzlnbzcNqDNZ3WH77

yFJV/xjTQINSFzg=

HJb3EiH2afruNRSvM8UmOTJszaNv

vpTsJ8xRpExCgnlkzaoM

hUfQlYHe4Qb+DVchQM/mlOM2kjVisoJUMQ==

0URByQED2NCVrO2x5w==

0rjp8oD4ZRKfuI9GPlhwJA==

dxYJqqoonh7bHhMqMNIxXJnL5biDg2uv

N8ICb2IiuRdOx0dgucigiZ0DBA==

xmZ3s1jrZPStPdn5PlhwJA==

UxQyYwqi37V3q59to3PU5ZOZtoEGTcin

SpBGRe06ITs14S8=

spVKc4gldemrMNzf

6IBwrjx2XTs14S8=

FOp6CqjQtLdXT25kzaoM

P/O46RkpqQ8Uvw==

Signatures

  • Formbook family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_c466d9a12e1ed5d9e3bb8062527775a1cc3b69596b4552c405a1d93870cc075e
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections