Overview

overview

10

Static

static

10

JaffaCakes...d3.exe

windows7-x64

1

JaffaCakes...d3.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_38b73d1196ca39a0c41ebf6680500e4a7021407c3a14818304a3b455c9ded4d3

  • Size

    188KB

  • Sample

    241226-1w89lsslcx

  • MD5

    5a0bdae81db3b9b94d6a7b4c78a5ef1d

  • SHA1

    9fb01e621a7bde0b9e30afa4dfb13f933c4d4f84

  • SHA256

    38b73d1196ca39a0c41ebf6680500e4a7021407c3a14818304a3b455c9ded4d3

  • SHA512

    e9c2b8e11a874156db420295c15c18f7606908fa0275b91ed273b35614eec31179393e0dc1d60549215087dab3745756f1320e44fc575048b962617f4902f5fd

  • SSDEEP

    3072:kaqE1jclOC1n33wVOW4/kej62jDEP0m3leP0bEWEmPtEHT26/c93+:7Y3381G762jDxzPpEtC/093

Score
10/10
formbooksy2hdiscoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

sy2h

Decoy

guwudy.com

dpcpodcastnetwork.com

dzjfl.xyz

metavsarena.com

7963.win

myplayerdevelopmentsystem.net

cabcus.com

lordofmoney044.xyz

bxtrace.online

adenyean789.com

maghreboundation.com

zbicvbo.xyz

lifeimpressions.art

mbossefootballclubacademy.net

zhengswl.com

kcjinfra.com

lemonshopee.com

knowinggod.world

9e2e.com

dahoambau.com

Targets

    • Target

      JaffaCakes118_38b73d1196ca39a0c41ebf6680500e4a7021407c3a14818304a3b455c9ded4d3

    • Size

      188KB

    • MD5

      5a0bdae81db3b9b94d6a7b4c78a5ef1d

    • SHA1

      9fb01e621a7bde0b9e30afa4dfb13f933c4d4f84

    • SHA256

      38b73d1196ca39a0c41ebf6680500e4a7021407c3a14818304a3b455c9ded4d3

    • SHA512

      e9c2b8e11a874156db420295c15c18f7606908fa0275b91ed273b35614eec31179393e0dc1d60549215087dab3745756f1320e44fc575048b962617f4902f5fd

    • SSDEEP

      3072:kaqE1jclOC1n33wVOW4/kej62jDEP0m3leP0bEWEmPtEHT26/c93+:7Y3381G762jDxzPpEtC/093

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks