Overview

overview

10

Static

static

10

JaffaCakes...78.exe

windows7-x64

1

JaffaCakes...78.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_6e4a02cc133fdb08a8af260287489865890432f7f74eec0d72d3c35bb54f0778

  • Size

    188KB

  • Sample

    241222-ly6h6stpgj

  • MD5

    21ca8818dce0fcffc5aabe5eb0841396

  • SHA1

    d0cc1021f803502d3dfc1a0475ba49135bc8042a

  • SHA256

    6e4a02cc133fdb08a8af260287489865890432f7f74eec0d72d3c35bb54f0778

  • SHA512

    a2122bc2e94b904808f08197d8f11ec6e1f74843d45cd29dda2afbab07038b021d8811e09e50fb0072d037cfeb912a5c7703f860c09771cc267f457c53b99290

  • SSDEEP

    3072:z2MvBkKF1wvzJ93ikcMZ9Xa26zNUDsMdEJjuSOVqRgcanfv1tfGHo06nBIw:nmxilMZta26zmDVVEZGGI067

Score
10/10
formbookwh23discoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

wh23

Decoy

ow9vyvfee.com

alvis.one

mutantgobz.claims

plynofon.com

southofkingst.store

nuvidamedspa.com

coffeeforyou56.com

opaletechevents.com

momobar.life

abcmousu.com

learnicd-11.com

tipokin.xyz

kahvezevki.com

suratdimond.com

oldartists.best

infoepic.info

mattresslabo.com

skarlmotors.com

cl9319x.xyz

med49app.net

Targets

    • Target

      JaffaCakes118_6e4a02cc133fdb08a8af260287489865890432f7f74eec0d72d3c35bb54f0778

    • Size

      188KB

    • MD5

      21ca8818dce0fcffc5aabe5eb0841396

    • SHA1

      d0cc1021f803502d3dfc1a0475ba49135bc8042a

    • SHA256

      6e4a02cc133fdb08a8af260287489865890432f7f74eec0d72d3c35bb54f0778

    • SHA512

      a2122bc2e94b904808f08197d8f11ec6e1f74843d45cd29dda2afbab07038b021d8811e09e50fb0072d037cfeb912a5c7703f860c09771cc267f457c53b99290

    • SSDEEP

      3072:z2MvBkKF1wvzJ93ikcMZ9Xa26zNUDsMdEJjuSOVqRgcanfv1tfGHo06nBIw:nmxilMZta26zmDVVEZGGI067

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks