General

  • Target

    JaffaCakes118_7ff4ac3aacaa05df81cb734f07123482e74d4531fe234add2529ad6fa17032ad

  • Size

    179KB

  • MD5

    2b626c7746a24e332690704e64c785b8

  • SHA1

    b79c9b376d5f0a8c02170e9a7fac14f9199e6193

  • SHA256

    7ff4ac3aacaa05df81cb734f07123482e74d4531fe234add2529ad6fa17032ad

  • SHA512

    957fbe55173b15d01f0e5182e8d7ad8b360122ee3c61b785bbb27fc2d2865cdd813089af4097ab22f762015851d2be742ad615954d04b264e2a6fe63389ce948

  • SSDEEP

    3072:VSGKyzs+1yRbL6tjxksZlUKkfMrUBjwmWdxBm9jURRxzI2zfKlCNUqy/l:VSKxu/KasZ+nsUBjwmWIjUGnUUT/

Score
10/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

ptc

Decoy

zugabe.info

approvallogin2000.com

furniture-2000.com

johnscleaningcompany.com

munajatdoa.com

amishkratindevarajan.com

0fwkyc.info

redditj.com

ffpifa.com

die-weinberater.com

fjark.com

squxd.info

potatotest.win

readingsbyalayna.com

giovanniokot.com

martinlidzba.com

conceptionhq.com

kessef.online

003sy.com

texasfhaloanrequirements.com

Signatures

  • Formbook family
  • Formbook payload 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_7ff4ac3aacaa05df81cb734f07123482e74d4531fe234add2529ad6fa17032ad
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections