General

  • Target

    JaffaCakes118_1cd6e550db0a15ea28d827634adfcaae868516d36b84f8e489c9f69845be1847

  • Size

    369KB

  • MD5

    461aeca36369765920f9f69ab03b998c

  • SHA1

    996abfc98f33bd1b43c7d47dc2c30149d0e5b08b

  • SHA256

    1cd6e550db0a15ea28d827634adfcaae868516d36b84f8e489c9f69845be1847

  • SHA512

    6322bcd8290b418dc377e3dffb2e37be0f8476cdbf0863746e0f340226df4ac6cad8c0fcd4a5f583a5ba99172d90bb20170f75808c86fb960e7173370f649b11

  • SSDEEP

    6144:/vl17D6xQm4UG+b6PLIjl6vl17D6xQm4UG+b6PLIjlY:V17+PGLPLx17+PGLPLj

Score
10/10

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

vr84

Decoy

intouchenergy.co.uk

lalumalkaliram.com

hillgreenholidays.co.uk

fluentliteracy.com

buildingworkerpower.com

by23577.com

gate-ch375019.online

jayess-decor.com

larkslife.com

swsnacks.co.uk

bigturtletiny.com

egggge.xyz

olastore.africa

lightshowsnewengland.com

daily-lox.com

empireoba.com

91302events.com

lawrencecountyfirechiefs.com

abrahamslibrary.com

cleaner365.online

Signatures

  • Formbook family
  • Formbook payload 1 IoCs

Files

  • JaffaCakes118_1cd6e550db0a15ea28d827634adfcaae868516d36b84f8e489c9f69845be1847