General

  • Target

    JaffaCakes118_71d59afc0939a3bad6b7e9c76155dfa03577275a0fee0584524d3c4b87b565dc

  • Size

    172KB

  • MD5

    2d4dda004a172635939a759d9fcf80d5

  • SHA1

    d0057a39fb0b8f02c4db6010862a6318fa374958

  • SHA256

    71d59afc0939a3bad6b7e9c76155dfa03577275a0fee0584524d3c4b87b565dc

  • SHA512

    14e96c7e7e2913def76a42afd412e039b726cb0d63aecbd050da8697314ae14a43ab9d61774d10ff5031a09cb9dddfbe86bbe8a752d57826529d132c984e8432

  • SSDEEP

    3072:WHpEsYeiA/kTGq2wdWA9ZRqM0ppdfXUA/tviRnT1+JPyVg4IY:WiKJcTuwpRqJZXUA/tviRT1+JPyVg4IY

Score
10/10

Malware Config

Extracted

Family

formbook

Campaign

s8gw

Decoy

b/iFndOEL2rKvw==

HK7quAepCJH6CkNgpH2cDYx1

YEayMA+cR1WQ0Qw/lQ==

kPVNVkAC6pEPHVFQnzCxsA==

yLE1wrE7kf1KRGRm5a95qQ==

D6ktQZWoaOJGopmOlg==

98rmMok6y5e47YvCCMQNPaqM6qf+7PsEAQ==

7Po3fdN1NNtop0X5Ryv9PnUrSLQ=

+vk1DU92V465rf1+gFhdWMFoAsAY

AuhZ6jw45aHmPdzGVilx

/9ln8smKekiYzqePkA==

7+gsdtTlpqcSL0/GVilx

6pXLEOumjAfvK8Y=

inT5kfC0FBmcw/hw7NYua819

wb/qKZCjfrEiKFz9Vyn9chrZxA==

Pil1K4a6ruUXJ2fPD5qXo+2pNMn5VdCREA==

mxo3/mBm1hMSWd8=

8ltzwIsdiPpJXbK30JecDYx1

BmrK2y9G+VyimqzrK9YtmYY=

jPP9Q/IqWt3JQSZtvqI1jb9oAsAY

Signatures

  • Formbook family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_71d59afc0939a3bad6b7e9c76155dfa03577275a0fee0584524d3c4b87b565dc
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections