Overview

overview

10

Static

static

10

JaffaCakes...40.exe

windows7-x64

1

JaffaCakes...40.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_4c755a137a593abef5904bc2d64a4c44ee8814a709736c563adb75e0b576a640

  • Size

    188KB

  • Sample

    241225-xchqrssqgm

  • MD5

    34bc817d1ca06f61c4bff0f9c390b2c4

  • SHA1

    42ce4457fdef92f65487eadfc1fbbb316936e1b9

  • SHA256

    4c755a137a593abef5904bc2d64a4c44ee8814a709736c563adb75e0b576a640

  • SHA512

    3d77092293d5aefe864c8f6a13641abf65b38aeaf3ba89fae359adb063f79bca1161a07526ed72e9b13c77eaf182b245593092964a458fd096fa7de75caa2a53

  • SSDEEP

    3072:20Je3zkmJyKWqtud3cyeYtNFrKKbuNHPShiK7Pmvn5eJhowsvlEagID6:25HxARctYRrKKbuBPSIKjmxyJb

Score
10/10
formbookd06cdiscoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

d06c

Decoy

douglasdetoledopiza.com

yxcc.online

primo.llc

mediamomos.com

cosmetiq-pro.com

22labs.tech

turbowashing.com

lindaivell.site

princess-bed.club

groundget.cfd

agretaminiousa.com

lomoni.com

nessesse.us

lexgo.cloud

halilsener.xyz

kirokubo.cloud

corotip.sbs

meghq.net

5y6s.world

weasib.online

Targets

    • Target

      JaffaCakes118_4c755a137a593abef5904bc2d64a4c44ee8814a709736c563adb75e0b576a640

    • Size

      188KB

    • MD5

      34bc817d1ca06f61c4bff0f9c390b2c4

    • SHA1

      42ce4457fdef92f65487eadfc1fbbb316936e1b9

    • SHA256

      4c755a137a593abef5904bc2d64a4c44ee8814a709736c563adb75e0b576a640

    • SHA512

      3d77092293d5aefe864c8f6a13641abf65b38aeaf3ba89fae359adb063f79bca1161a07526ed72e9b13c77eaf182b245593092964a458fd096fa7de75caa2a53

    • SSDEEP

      3072:20Je3zkmJyKWqtud3cyeYtNFrKKbuNHPShiK7Pmvn5eJhowsvlEagID6:25HxARctYRrKKbuBPSIKjmxyJb

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks