General

  • Target

    JaffaCakes118_6fb1f89bbc837d1c554d801ec4956947e55e0a3df2fde2429bc7d1d0b5425088

  • Size

    188KB

  • MD5

    5f2ec370823580d3b2730b65e5928fc3

  • SHA1

    d4eef2f35a4e9b4f224066251d91c8bc882cb50e

  • SHA256

    6fb1f89bbc837d1c554d801ec4956947e55e0a3df2fde2429bc7d1d0b5425088

  • SHA512

    d48530cc97d403c2d5627fe6f11ac5fcb4543f91d3707ddd8026aa2b90d661c95418e4d6cc715e4729a38aa909457d4464bae22fc8529f7c8a20cec61d642cfb

  • SSDEEP

    3072:NOCrHoXyZYfd+AcWioQglMCRCM8evb6kH7xYpX3u0EG+RcX6J5HrmIHxOSCLwj:NOC0XEY1+AYEX0qjLH7xYpuNGkc65LDd

Score
10/10

Malware Config

Extracted

Family

formbook

Campaign

chof

Decoy

1UnM9v3V2HuR2iE=

B4oRF6xBBhDKMJEdaPRiEAw0

r9++/ZEvBh3jRD0FzE01EA==

8qVuosqPI0JfNJGbZ15FT4J8Ng==

83F9+6BFk45ZYEWU04g=

aFPhK8qZoK5CUsemIC+pMoA=

hHkCihi3/HESewQJvpc=

GUMdYJRn7phVzbCTl1BDFg==

aqh5D/PNZYKH3xjDlAoz

P7NS0gXlNFVl

tS/FQFfydoZW6R2I

249T0dBwbVJp

7qNui6I3hCL3vpf5UgKVL+po4YZw

6A/tRMtieCQf/TMU1/8pJbScylADQJRwXA==

b6N1CLSByGdvSIFl6KkVYOlmEoA=

HNGX1Q3YXPxV7ceaT0w/T4J8Ng==

WwvO/0jw8ICLWo9w860VYelmEoA=

Mfa58tV8e9xs5FfhMi+pMoA=

ZOB69iIBTXJ2

EUENQq5AXeCoh8TO0BI5T4J8Ng==

Signatures

  • Formbook family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_6fb1f89bbc837d1c554d801ec4956947e55e0a3df2fde2429bc7d1d0b5425088
    .exe windows:6 windows x86 arch:x86


    Headers

    Sections