General
-
Target
7d79c7102830cd1192f8582a1603f2ee_JaffaCakes118
-
Size
664KB
-
Sample
240401-3m3ftaag63
-
MD5
7d79c7102830cd1192f8582a1603f2ee
-
SHA1
1ba2c93342865b68b1f6b1b96086d9fef4ca237d
-
SHA256
4853bd8eef0ed8a7b1d3809692475c189024d393a7cda7808a8121f3ccef411c
-
SHA512
baba9ac2dc5c620c5f80152c39222c81ff788bd82aa2d03d8659e79ba39017f65be48264a2aa242a281a702182d7c06973411d83b47d35deb3e56233b6644f60
-
SSDEEP
12288:Z/0Qzqf0eei48vM+6TFKywVt6PbEYU0eyJTT/Mu9oV01u3oaEPa:J0zheAn6TFKywvCbEOxDMu9oyZaEPa
Static task
static1
Behavioral task
behavioral1
Sample
7d79c7102830cd1192f8582a1603f2ee_JaffaCakes118.dll
Resource
win7-20240221-en
Malware Config
Extracted
dridex
10222
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
7d79c7102830cd1192f8582a1603f2ee_JaffaCakes118
-
Size
664KB
-
MD5
7d79c7102830cd1192f8582a1603f2ee
-
SHA1
1ba2c93342865b68b1f6b1b96086d9fef4ca237d
-
SHA256
4853bd8eef0ed8a7b1d3809692475c189024d393a7cda7808a8121f3ccef411c
-
SHA512
baba9ac2dc5c620c5f80152c39222c81ff788bd82aa2d03d8659e79ba39017f65be48264a2aa242a281a702182d7c06973411d83b47d35deb3e56233b6644f60
-
SSDEEP
12288:Z/0Qzqf0eei48vM+6TFKywVt6PbEYU0eyJTT/Mu9oV01u3oaEPa:J0zheAn6TFKywvCbEOxDMu9oyZaEPa
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-