Overview

overview

10

Static

static

10

JaffaCakes...39.exe

windows7-x64

1

JaffaCakes...39.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_f3144f32964f452cf8013540f5fb18f28f603a2d43ae82d468a81c60cef1d539

  • Size

    188KB

  • Sample

    241224-pgbh9axmgr

  • MD5

    8069773990a34a2755462e9b1fff886c

  • SHA1

    255088308b2ade77ea9870cd54f72b91ea3e3226

  • SHA256

    f3144f32964f452cf8013540f5fb18f28f603a2d43ae82d468a81c60cef1d539

  • SHA512

    7fec4ce73895eed6e61baf357f4f523015fb20ed68aa446c637649d1feaca31c1ddac68c4f1fcc61570d229e5274545986d07ca3abf44034dd5966b7a8eb0e0b

  • SSDEEP

    3072:tq9ZFr78kcHj+irU90Fx9Nad4DbabEamUGjKlZVZshXmSB4:af8an90f9NSWbabE7Uh5ZOXmS

Score
10/10
formbookeeutdiscoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

eeut

Decoy

hack11.xyz

ylcth.com

saunasbythesea.com

proeplan.com

pinoyinhd.com

gailwattfamily.com

marssoum.com

episodeconsulting.com

newspaperadviser.net

generallyconstellation.com

joey-bet.com

3115lakeshorerd.com

sysealhaha.site

tokopa9.com

daohanthetindung247.com

renopetnanny911.site

thejoineryhub.com

tripleflexionstrap.com

talpolardecent.xyz

mozipress.com

Targets

    • Target

      JaffaCakes118_f3144f32964f452cf8013540f5fb18f28f603a2d43ae82d468a81c60cef1d539

    • Size

      188KB

    • MD5

      8069773990a34a2755462e9b1fff886c

    • SHA1

      255088308b2ade77ea9870cd54f72b91ea3e3226

    • SHA256

      f3144f32964f452cf8013540f5fb18f28f603a2d43ae82d468a81c60cef1d539

    • SHA512

      7fec4ce73895eed6e61baf357f4f523015fb20ed68aa446c637649d1feaca31c1ddac68c4f1fcc61570d229e5274545986d07ca3abf44034dd5966b7a8eb0e0b

    • SSDEEP

      3072:tq9ZFr78kcHj+irU90Fx9Nad4DbabEamUGjKlZVZshXmSB4:af8an90f9NSWbabE7Uh5ZOXmS

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks