Overview

overview

10

Static

static

10

JaffaCakes...d4.exe

windows7-x64

1

JaffaCakes...d4.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_99b2590dbda91b9290d779914f74ed967b4e7d71f0001a2e4e3139ae50ef5dd4

  • Size

    188KB

  • Sample

    241225-t5mnmsypep

  • MD5

    b838756197210971d648ace13f85c04a

  • SHA1

    65cfb85ffb5132b8fbda7578e67e85bba941fbb1

  • SHA256

    99b2590dbda91b9290d779914f74ed967b4e7d71f0001a2e4e3139ae50ef5dd4

  • SHA512

    9aee2c7073c9abd67d1734d6ebe4b8c577a18670ac762283d79d119003105b4f52ad44545cdb5d52ebb257dbbdd52eb150be06690a2932b75c2ad771fa970921

  • SSDEEP

    3072:S0kEm+FyPsmx393qZHmopxq7mXp+OCQFfx1Smfokadi3iG1Z8JCZU+:fMt96Tpx2mXpRCQNEk6iSG1C5

Score
10/10
formbookgd08discoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

gd08

Decoy

discover-tiktok.com

vgyvgycc.com

mrsg.xyz

alredwan.net

d1guoji.com

0519bjw.com

robinhoodplu.com

thechickscincinnati.com

efq2ci2.cfd

vgas4.xyz

s3y4b19.cfd

desertcaviar.com

capricho.xyz

flaujae.com

lensmaintenance3.com

1kjia39.cfd

tqn6.com

needammuntionnotaride.com

2681h.com

braincloudstudios.net

Targets

    • Target

      JaffaCakes118_99b2590dbda91b9290d779914f74ed967b4e7d71f0001a2e4e3139ae50ef5dd4

    • Size

      188KB

    • MD5

      b838756197210971d648ace13f85c04a

    • SHA1

      65cfb85ffb5132b8fbda7578e67e85bba941fbb1

    • SHA256

      99b2590dbda91b9290d779914f74ed967b4e7d71f0001a2e4e3139ae50ef5dd4

    • SHA512

      9aee2c7073c9abd67d1734d6ebe4b8c577a18670ac762283d79d119003105b4f52ad44545cdb5d52ebb257dbbdd52eb150be06690a2932b75c2ad771fa970921

    • SSDEEP

      3072:S0kEm+FyPsmx393qZHmopxq7mXp+OCQFfx1Smfokadi3iG1Z8JCZU+:fMt96Tpx2mXpRCQNEk6iSG1C5

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks