General

  • Target

    JaffaCakes118_e0d549b7638c581231a2f0c816bf330bf810430422a9f73487d4c330bb923dcd

  • Size

    188KB

  • MD5

    107eb587532f13f38dd182395fcc91a2

  • SHA1

    162f262e6e266c73d23b52ff3ad79eeb75d375d7

  • SHA256

    e0d549b7638c581231a2f0c816bf330bf810430422a9f73487d4c330bb923dcd

  • SHA512

    f3d60021af9b00ec9de6ec0e76d502c6661b598013fac0e1fbb4e2e6aeaba33eae83dd15639cbbe583d393d066251b55a86045a0a43a5fbae03cd48113efb880

  • SSDEEP

    3072:XKHWIFrJ2SKgEOM2+arzBeoFnQtNKC9B5a0po6iuC31yHlIHMJ5SYJg:rA2FEzBb6KC9Bx2rmIHMJ5SH

Score
10/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

keb5

Decoy

franktrichards.mobi

teahxy.com

topmallset.com

gajah77.info

sweetncliffjr.com

alliancegh.com

cue-track.com

lifecreditsystem.com

disegno-creativo.com

pelabuhanratu.com

cristidesign.com

heimeier-executive.com

cliphitech.net

n1663.com

applehelpp.store

rachelmurphygardens.com

angelstylesy.com

qhfkw.club

onesportsnetwork.com

thesuperiorbaths.com

Signatures

  • Formbook family
  • Formbook payload 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_e0d549b7638c581231a2f0c816bf330bf810430422a9f73487d4c330bb923dcd
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.