Overview

overview

10

Static

static

10

JaffaCakes...68.exe

windows7-x64

1

JaffaCakes...68.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_0bcf803d59d399a5521060a85c5cc12a67ecf95b7cf319c582765d95aebfd668

  • Size

    188KB

  • Sample

    241225-p35dfstkct

  • MD5

    383b74e4f4987a89035af7cc7967fbb2

  • SHA1

    f242f5baa4df87b8830ba599cd5fa05af2a30ff9

  • SHA256

    0bcf803d59d399a5521060a85c5cc12a67ecf95b7cf319c582765d95aebfd668

  • SHA512

    51afaf8c811a9d4d3d1a0d6a55230f3053b0b49b41671136883f25bf890f6070336ac1be93e7c8859c8e882f6a6fc32e46973ca45c7363fa969e22a31b88d6ee

  • SSDEEP

    3072:/SypHk5pb+Bxyi3TRgYSAi+v6FBGVwrJrHNtaMSXfI9BJCchF:szUTWYHJv6FBGVwrJjQIjg

Score
10/10
formbookc7k0discoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

c7k0

Decoy

farmerbaazaar.com

renshouchina.com

xn--es-mja.com

qiannianyi.com

edwardsvilleitsolutions.com

xu6hmbv3cbxu.xyz

unicreditbanca.center

showmefoam.net

money-guardman.com

accra.media

pizzeria-la-mona.com

kodiakbeard.net

dragshowmetaverse.com

guodh.xyz

cupidscheatsheet.com

taheock.xyz

contactjpass.com

slsj945.com

needplusoffers.com

asthaforce.com

Targets

    • Target

      JaffaCakes118_0bcf803d59d399a5521060a85c5cc12a67ecf95b7cf319c582765d95aebfd668

    • Size

      188KB

    • MD5

      383b74e4f4987a89035af7cc7967fbb2

    • SHA1

      f242f5baa4df87b8830ba599cd5fa05af2a30ff9

    • SHA256

      0bcf803d59d399a5521060a85c5cc12a67ecf95b7cf319c582765d95aebfd668

    • SHA512

      51afaf8c811a9d4d3d1a0d6a55230f3053b0b49b41671136883f25bf890f6070336ac1be93e7c8859c8e882f6a6fc32e46973ca45c7363fa969e22a31b88d6ee

    • SSDEEP

      3072:/SypHk5pb+Bxyi3TRgYSAi+v6FBGVwrJrHNtaMSXfI9BJCchF:szUTWYHJv6FBGVwrJjQIjg

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks