General

  • Target

    JaffaCakes118_12696b6288fa038f64c0ddaadd015dc48a3ba067d247350369896dcd7c3c17c9

  • Size

    188KB

  • MD5

    4595992061b618e7bf31b3329288628a

  • SHA1

    c3c412f05eb8da678bab1dad6df204080acbcc26

  • SHA256

    12696b6288fa038f64c0ddaadd015dc48a3ba067d247350369896dcd7c3c17c9

  • SHA512

    6d8e6f88b3aa8c8b23c70d0e77179e8d6fa58f03de46fcd7a74338ef472cdf312cc5fcdf04f3d5bd0fe3c6a222c3436b1c936e74081b212fd4589ff7dd692878

  • SSDEEP

    3072:eKg7eqyaLh0jwaYqJW4rWoTs8Xh90wCORzYU9MHv4PFluRfrM8oGnhP4WNdhw3p:eaYGaqBrUahyw5Rp9Ev4Pz6A8Bhbep

Score
10/10

Malware Config

Extracted

Family

formbook

Campaign

adb9

Decoy

DJGECa7+LFJoV6LsTejo

UWLNOz175iJP

xGBGiZA+ZCDKf3qnAA==

y3NkiKS76ZCeJj2tlDg=

uWlFfxuWr7t4FYSyjmnpvYw=

xeVUZ/JXq2MIoPg/nEVXACuBMLZ1d5Zz

tr0vYfpgyI0u2VI=

K1zKLkLpBq1mMc4VjUcBmA==

96WKDpiUzdXqlgg2kMNn91iUSqIV

be/jPMb2L9n5puWNkTI=

qDUNmTtyveqRsOcP0D4=

XnbbSVn9MzvYRGhR8ng8HoC811c=

v7kamZ0gUotxcISD

a2XNHUY6YR1SNmdhWklNVijI6UU=

hiockjZloTLVRm1uhmnpvYw=

a3rSQTEjmjCHf3qnAA==

XmfZNULaARoyAZNIkP7x

bxX6hxARiPGybp+d

ra8TOuyl3fa1PaLqt1AE3T7L

s5d0qjxglybJf3qnAA==

Signatures

  • Formbook family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_12696b6288fa038f64c0ddaadd015dc48a3ba067d247350369896dcd7c3c17c9
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections