Overview

overview

10

Static

static

10

JaffaCakes...49.exe

windows7-x64

3

JaffaCakes...49.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_898876125715f45336e21be772d21f796f9a4b428893c0fa079d1f06876c2749

  • Size

    188KB

  • MD5

    8311eba7eb426f02971b0b8e2b5c52ee

  • SHA1

    059eeebbbd0ad94530bdb44a59617cf349b70a16

  • SHA256

    898876125715f45336e21be772d21f796f9a4b428893c0fa079d1f06876c2749

  • SHA512

    31167059e19356c0235f9004bd9dba1fd39078b5efd5c93e97d5522a72eb054614964083688343b448df6e671dceceaeb59716deb4451a8ecea6058da53b7135

  • SSDEEP

    3072:YxjiHS3XqHzbGJn95Se9AWqq3KDXYeYmJz+EFsrmdHtTMJKwaMNfKDx+oa3M02w1:YplKH3GVeY8q3BbmRDAmdHtTMwwaMYD+

Score
10/10
ratnrlnformbook

Malware Config

Extracted

Family

formbook

Campaign

nrln

Decoy

IG7zJSm49UqTTuu/N/oTCIg=

CVLdAPgw0CRSMuZnRRU=

PiA5Z3umP2NyX81VGQhjWyS59nFYhXiG

5i6p4GeQqtBgNRfGNQ==

5984keYswxh8mGZHz4ipAHtQ

VNJaK4Gh0CrOvHpW/p353A==

71rEtrL2icToyKGhcWrTxjsFU5T98zeO

r3q1sy1iZaL+2XIUAob7yw==

9+83Qkrk/vV/jVXsDvoTCIg=

aMFAgYF1prov8/UErH/Y1A==

Alqtx/0rxwEbCLdudftl

ImCbnglBSUHF0mv2tTSP40bPeYao

s4DFNvAJ4GIJ+g==

phOa6mtS8QQICuZnRRU=

7TSu5vqRtB45EZtf4WDSTBHPeYao

ImPWqwUUIVWMQLyMbUab7tmspvNCcT8=

HF7jKjbGox2SAffTPw==

yAM3mOQot5l+cD0ikR5MGp8=

UYzW0/8z70JcQenVLidu1kLPeYao

OoCznp5UWz+hT9OBFXbfVhXPeYao

Signatures

  • Formbook family
    formbook
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_898876125715f45336e21be772d21f796f9a4b428893c0fa079d1f06876c2749
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections