Overview

overview

10

Static

static

10

JaffaCakes...86.exe

windows7-x64

1

JaffaCakes...86.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_c4f8aec37af1dd035a0332504d652e887844e1125c38def538b3c1d5f39a4b86

  • Size

    188KB

  • Sample

    241226-v9zz7sspgw

  • MD5

    723fb8eed16ea56de337d69e06ea5b50

  • SHA1

    d76d5b07c148517ea229b59f0ba05e8d06ecc20f

  • SHA256

    c4f8aec37af1dd035a0332504d652e887844e1125c38def538b3c1d5f39a4b86

  • SHA512

    a03a8d8b71cb14f7888265c00c9f06c859bbccdd5d19bc0a88d257f27c2dffb62d0ad4c859da063ff0a8a89e98d35531f0b33c4c674747a8267750561257ca42

  • SSDEEP

    3072:eKsEXo6h226236qvpHVv+auNDUjvGWn8/SLjxsnQp/XJMhpP:Noxg6qBHsauNDUz5n8/S5si5I

Score
10/10
formbookg14ediscoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

g14e

Decoy

shironouranai.site

eleventhrice.com

mardyhotel.com

tarahsalam.com

wildskytea.com

sxhx99.com

drarzani.com

liato-dolce.com

officegorillaz.com

futuramajilotepec.com

recoveringkristen.com

fishingpredictionmaps.com

creativejoin.com

graphics-corner.com

kschanningforwisconsin.com

thaispinning.com

tipsysuits.com

wisconsingreaterhomes.com

legionsofaesthetics.com

yb21111.com

Targets

    • Target

      JaffaCakes118_c4f8aec37af1dd035a0332504d652e887844e1125c38def538b3c1d5f39a4b86

    • Size

      188KB

    • MD5

      723fb8eed16ea56de337d69e06ea5b50

    • SHA1

      d76d5b07c148517ea229b59f0ba05e8d06ecc20f

    • SHA256

      c4f8aec37af1dd035a0332504d652e887844e1125c38def538b3c1d5f39a4b86

    • SHA512

      a03a8d8b71cb14f7888265c00c9f06c859bbccdd5d19bc0a88d257f27c2dffb62d0ad4c859da063ff0a8a89e98d35531f0b33c4c674747a8267750561257ca42

    • SSDEEP

      3072:eKsEXo6h226236qvpHVv+auNDUjvGWn8/SLjxsnQp/XJMhpP:Noxg6qBHsauNDUz5n8/S5si5I

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks