General
-
Target
04613f7bf0b8c87ef1cb61496e00f2f8_JaffaCakes118
-
Size
203KB
-
Sample
240428-e5pqnsgb32
-
MD5
04613f7bf0b8c87ef1cb61496e00f2f8
-
SHA1
9f76dd0aa8d55ffdabd88dc7d54480bcd77427d8
-
SHA256
37f076e256c80fd0de0979f054b515664b2ec0d580471ffc6330f90798c2554e
-
SHA512
b99721e1af4894ea62c661d58c26188224793bb7e6b5a118e69148b0922320a9c71cc81d6082af77a140c53aa5fd99f0a2a3a4651a0ec7ad32d024e8c9e2e3de
-
SSDEEP
3072:9Yji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:9Sdp4uPZzGonqXGXh0bluBc4GZ5
Static task
static1
Behavioral task
behavioral1
Sample
04613f7bf0b8c87ef1cb61496e00f2f8_JaffaCakes118.exe
Resource
win7-20240215-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
04613f7bf0b8c87ef1cb61496e00f2f8_JaffaCakes118
-
Size
203KB
-
MD5
04613f7bf0b8c87ef1cb61496e00f2f8
-
SHA1
9f76dd0aa8d55ffdabd88dc7d54480bcd77427d8
-
SHA256
37f076e256c80fd0de0979f054b515664b2ec0d580471ffc6330f90798c2554e
-
SHA512
b99721e1af4894ea62c661d58c26188224793bb7e6b5a118e69148b0922320a9c71cc81d6082af77a140c53aa5fd99f0a2a3a4651a0ec7ad32d024e8c9e2e3de
-
SSDEEP
3072:9Yji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:9Sdp4uPZzGonqXGXh0bluBc4GZ5
-