Behavioral task
behavioral1
Sample
JaffaCakes118_29c72a677300d6d3c9c3809325f2a22fed8a6a93659561ae7b91c1f813a31f6e.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
JaffaCakes118_29c72a677300d6d3c9c3809325f2a22fed8a6a93659561ae7b91c1f813a31f6e.exe
Resource
win10v2004-20241007-en
General
-
Target
JaffaCakes118_29c72a677300d6d3c9c3809325f2a22fed8a6a93659561ae7b91c1f813a31f6e
-
Size
188KB
-
MD5
0316b3debd5ea526e780467796ac3afa
-
SHA1
bbd31dadacff532d7cb41ee9a09c50b528d4c931
-
SHA256
29c72a677300d6d3c9c3809325f2a22fed8a6a93659561ae7b91c1f813a31f6e
-
SHA512
c5e54c02a17ae8f3ae080373bc0679c260d9d7e160afb138f8324dfeeeee7d4245b9b2b549b781bdf5e61d41a6a41060c4b8b7cf2c50bc493ccc7a3892b9a646
-
SSDEEP
3072:nOcEhLb6zcSx53VeSPPKFKSh2QdOjPayFHIAeLyLZRRgdly1:W6lVN3KF7h2QIjPayVp9RRSly
Malware Config
Extracted
formbook
4.1
s1y5
grayzoneconsulting.net
antidogmatik.net
westministerhoa.com
leavesickness.com
tigerglobal.asia
converterpdf.com
alexcsipkesart.com
scoliowave.com
officialstc.com
fitnessprofitladder.com
boulderchauffeurservice.com
securedhelp.info
orientalrugsbymagellan.com
homrivan.com
3dxtools.net
bungalovsuitesapanca.com
pavlovgroep.site
dermatologiapsiquiatrica.com
feraliopolsar1.xyz
duvalu.agency
alondev.com
seaportsc.com
walkandseemore.com
eiforensics.com
sterze.xyz
dupattewale.com
vmmzu.com
happyduckcatering.com
612roofing.com
royalspiritboutique.com
fatema1.xyz
nhavuonminhngoc.com
0h12.com
alliadi.com
businessmarketingdig.com
bjmecell.com
de-showroom.com
connectiontherapyclinic.com
palmtreesunlimited.net
mysrv.tech
blacklabrador.net
pranksseaman.xyz
metrouni.info
mordeafrica.com
empleohoy.xyz
pisuccessformula.com
hsh-des.com
endgoogletax.com
best-friends-games.com
powerupcasino2.com
homemadebyangie.com
noturmail.com
performancecyclingcamps.com
carmenesteem.com
votebish.com
olynan.com
samsa-email2.com
getknowledgex.com
matzohpizza.com
kleer.dental
newprofliepics.com
sdzxang.com
libertaedu.com
aishavcare.info
ynsjtl.com
Signatures
Files
-
JaffaCakes118_29c72a677300d6d3c9c3809325f2a22fed8a6a93659561ae7b91c1f813a31f6e.exe windows:5 windows x86 arch:x86
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Sections
.text Size: 180KB - Virtual size: 180KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ