Overview

overview

10

Static

static

10

JaffaCakes...19.exe

windows7-x64

1

JaffaCakes...19.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_468b6bb16de2b5f7b4c5c9cf269fe496ff2370147face8622e6f72ea6b6ec719

  • Size

    188KB

  • Sample

    241230-chvbjavjer

  • MD5

    6129a31c2e9ef65aeed1de49e97f491f

  • SHA1

    0841c0ed329e8fd1a23c0a4c3b0743d44f5cfdba

  • SHA256

    468b6bb16de2b5f7b4c5c9cf269fe496ff2370147face8622e6f72ea6b6ec719

  • SHA512

    41d104b9917c13818f1a1fe115a55a2cbb7d570dc8c91cabb480e1021ccee4cfe5f282f97ec0b783c0fbc8975ada00dc98968fe86a9cacbc37eed67e85d86d7e

  • SSDEEP

    3072:E1ZNqkJ0eEY/YT3A4toGQtaiKjn3x/xqv45YMYRz7i7FnSav:4m/7A8oGmaiKj3BxFYa79v

Score
10/10
formbookr1e3discoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

r1e3

Decoy

floorwaves.com

leshigou.top

2y3jq.com

karobazaar.com

cookdd9.com

xn--9kqu10bhqv.top

hollieforson.com

peachso.com

gerberry.info

abslikepro.com

lesourire-official.com

dfhgxi.icu

lightofcg.com

hismozart.com

nieuwemaniervanleven.com

trimble-gs-112-cable-reel.com

putacandleinit.com

gopenly.xyz

northcountyneuropsychology.com

thekittyherbalist.com

Targets

    • Target

      JaffaCakes118_468b6bb16de2b5f7b4c5c9cf269fe496ff2370147face8622e6f72ea6b6ec719

    • Size

      188KB

    • MD5

      6129a31c2e9ef65aeed1de49e97f491f

    • SHA1

      0841c0ed329e8fd1a23c0a4c3b0743d44f5cfdba

    • SHA256

      468b6bb16de2b5f7b4c5c9cf269fe496ff2370147face8622e6f72ea6b6ec719

    • SHA512

      41d104b9917c13818f1a1fe115a55a2cbb7d570dc8c91cabb480e1021ccee4cfe5f282f97ec0b783c0fbc8975ada00dc98968fe86a9cacbc37eed67e85d86d7e

    • SSDEEP

      3072:E1ZNqkJ0eEY/YT3A4toGQtaiKjn3x/xqv45YMYRz7i7FnSav:4m/7A8oGmaiKj3BxFYa79v

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks