Overview

overview

10

Static

static

10

JaffaCakes...b2.exe

windows7-x64

3

JaffaCakes...b2.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_a2dbb57921850c7e86d03f7bfec93e33a8f25dd8964e0e7b83da473ef6b25cb2

  • Size

    188KB

  • Sample

    241230-xl7q9awnh1

  • MD5

    c4011fad6adb39abb9fde60e855e06be

  • SHA1

    14d55827ff68ab848fd8e5c46c8123db079ed452

  • SHA256

    a2dbb57921850c7e86d03f7bfec93e33a8f25dd8964e0e7b83da473ef6b25cb2

  • SHA512

    8d4eafeb068354c5a99b084d71b01316679e7ed7963abbb6bd7a2d9d1ed7315f1dc3598cc8c19e93f259cd515170c3c2a23fa1dfbcd271b35392c518d5a5463c

  • SSDEEP

    3072:12xl7J8Z96kBDdNWtpMCsf3QLkZ51jSl45vJnGSv8nUKihxNGBUeW:S8Z4EdspoAL23jcuvJnGSv8nUKINeW

Score
10/10
formbookehibdiscoveryrat

Malware Config

Extracted

Family

formbook

Campaign

ehib

Decoy

3nGq0s6gPi4qC0fiXQsefQ==

6q1H3j9Bn2Yfuo+GWA==

foCtsHoUuJ+eawozBi8IO+LgyQ==

rkfyXBucxirlQmH+aM2pDtU=

Kct1mFbemKaihCHXdqgE

z8Hr148jqoOCrxgHGVpjwEZi

jUFre2g9aNpJ7iVGQQ==

SVL3Yh+qUV5IPo7BhfroZA==

s5jLw6p/esZH7BfIGwDuR8zx0A==

f0eErqFUY8bMuAkl9CWH+ts=

pKE0YwWYFteT7AvzJiCL08s=

Rr7r2b2SIA7/6X2ZSfYFbg==

tNcWFvF+D95N6xVBUA==

UFOCfDi/V1IFY2pCkdgZ

/M49ryk4PJQ=

MGOcB9BikgYG6HEPfC12xMI=

l59OkTTKg442k5sCTo/YMTmC60wyhstpaA==

7V+LsMKEm/n6u9HCT9CZBN8=

cm4LdjekNRneQY/BcSQtfQ==

rKM/eE3CAzDgOQ==

Targets

    • Target

      JaffaCakes118_a2dbb57921850c7e86d03f7bfec93e33a8f25dd8964e0e7b83da473ef6b25cb2

    • Size

      188KB

    • MD5

      c4011fad6adb39abb9fde60e855e06be

    • SHA1

      14d55827ff68ab848fd8e5c46c8123db079ed452

    • SHA256

      a2dbb57921850c7e86d03f7bfec93e33a8f25dd8964e0e7b83da473ef6b25cb2

    • SHA512

      8d4eafeb068354c5a99b084d71b01316679e7ed7963abbb6bd7a2d9d1ed7315f1dc3598cc8c19e93f259cd515170c3c2a23fa1dfbcd271b35392c518d5a5463c

    • SSDEEP

      3072:12xl7J8Z96kBDdNWtpMCsf3QLkZ51jSl45vJnGSv8nUKihxNGBUeW:S8Z4EdspoAL23jcuvJnGSv8nUKINeW

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks