General
-
Target
5b0f21ba7548263a4a7fe550a9126a2e_JaffaCakes118
-
Size
604KB
-
Sample
240331-xdarjsha41
-
MD5
5b0f21ba7548263a4a7fe550a9126a2e
-
SHA1
d8ecfb993d473ebb0d2fe9633094debf777a3dd6
-
SHA256
022300768af4879806a62b295825264657708576228f92efda2ba023ef0d955c
-
SHA512
515fd3bcb6018d1ff58b2c7bcbcec1f3da2d1ec11f36306899dd3c6559b4a341076e9e546449af502254f2f7d140c0412917075a1fa5f4e9934c328d196fec0d
-
SSDEEP
12288:3uIBXPwMtjp4CqwqyaXPLAfx38TW9DiWUT2tq017JGoLb+W/:eyb4wqyaDA5sTWiXT2tq07G2b/
Static task
static1
Behavioral task
behavioral1
Sample
5b0f21ba7548263a4a7fe550a9126a2e_JaffaCakes118.dll
Resource
win7-20240221-en
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
5b0f21ba7548263a4a7fe550a9126a2e_JaffaCakes118
-
Size
604KB
-
MD5
5b0f21ba7548263a4a7fe550a9126a2e
-
SHA1
d8ecfb993d473ebb0d2fe9633094debf777a3dd6
-
SHA256
022300768af4879806a62b295825264657708576228f92efda2ba023ef0d955c
-
SHA512
515fd3bcb6018d1ff58b2c7bcbcec1f3da2d1ec11f36306899dd3c6559b4a341076e9e546449af502254f2f7d140c0412917075a1fa5f4e9934c328d196fec0d
-
SSDEEP
12288:3uIBXPwMtjp4CqwqyaXPLAfx38TW9DiWUT2tq017JGoLb+W/:eyb4wqyaDA5sTWiXT2tq07G2b/
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-