General
-
Target
17af5975861e3433513e09c2a9fe5058_JaffaCakes118
-
Size
703KB
-
Sample
240627-1xcxsstblb
-
MD5
17af5975861e3433513e09c2a9fe5058
-
SHA1
261d0692b7d0aee53537fe63742a5d67d99c0309
-
SHA256
f730752f0004b350ae3feabc65cad92908079f4ced927cf320228621eec9bac8
-
SHA512
df8c8822ea2a876e22cd6b2af0fa2ad32872f6472e0e4dc58bfd74f355f69a534e2daaec1d812b63da04547a3af5d0933884f7dc58849094e6231a42bf0ec535
-
SSDEEP
12288:HZi9709qmdSUeRbZCzWBe4CUDhB8ylisVFtAHLO15IRoULHLpev6Gqr1spGntWr9:HZL3mbZAW9Co0yjAw6Hr1yGtWr9
Static task
static1
Behavioral task
behavioral1
Sample
17af5975861e3433513e09c2a9fe5058_JaffaCakes118.exe
Resource
win7-20240220-en
Malware Config
Extracted
formbook
4.1
aky
jeiksaoeklea.com
sagame-auto.net
soloseriolavoro.com
thecreatorsbook.com
superskritch.com
oroxequipment.com
heart-of-art.online
liwedfg.com
fisherofsouls.com
jota.xyz
nehyam.com
smart-contact-delivery.com
hoom.guru
dgryds.com
thesoakcpd.com
mishv.com
rings-factory.info
bero-craft-beers.com
podcastnamegenerators.com
856379813.xyz
ruinfectious.com
wdcsupport.com
youngbrokeandeducated.com
shpments75.com
louisbmartinez100th.com
shining.ink
hkexpresswaterford.com
quickcashoffersatl.com
180cliniconline.com
mainriskintl.com
clinicadosorriso.com
kuxueyunkeji.com
smart-acumen.com
maisonkerlann.com
jewishposter.com
xn--w52b77ujva.com
antoniodevivo.com
diversitypatriots.com
tiotacos.company
ventumgi.com
ip-tv.online
smithvilletexashistory.com
amruta-varshini.com
wildpositive.com
alifezap.com
nczjt.net
palmsvillaswhitneyranch.com
experiencemoretogether.com
dewitfire.com
scruffynotfluffy.online
bazarsurtidorico.com
dayscosmetics.com
tpsvegas.com
externalboard.com
2125lynchmere.com
agroplenty.com
easterneuropemall.com
whtoys888.com
writehousepoint.com
ppeaceandgloves.com
sadtire.press
jj3994.com
smokenengines.com
offplanprojects-re.com
bytecommunication.com
Targets
-
-
Target
17af5975861e3433513e09c2a9fe5058_JaffaCakes118
-
Size
703KB
-
MD5
17af5975861e3433513e09c2a9fe5058
-
SHA1
261d0692b7d0aee53537fe63742a5d67d99c0309
-
SHA256
f730752f0004b350ae3feabc65cad92908079f4ced927cf320228621eec9bac8
-
SHA512
df8c8822ea2a876e22cd6b2af0fa2ad32872f6472e0e4dc58bfd74f355f69a534e2daaec1d812b63da04547a3af5d0933884f7dc58849094e6231a42bf0ec535
-
SSDEEP
12288:HZi9709qmdSUeRbZCzWBe4CUDhB8ylisVFtAHLO15IRoULHLpev6Gqr1spGntWr9:HZL3mbZAW9Co0yjAw6Hr1yGtWr9
-
Formbook payload
-
Suspicious use of SetThreadContext
-