General
-
Target
6678c0c700a81cd5752fa4cd214feae4_JaffaCakes118
-
Size
620KB
-
Sample
240401-d17v1scd51
-
MD5
6678c0c700a81cd5752fa4cd214feae4
-
SHA1
593e5c032de20268d97b911dce86fe7af06d643d
-
SHA256
ff0b0878821718f9f9626ee6f60ac6268f9a3c529f18cacf485236767f249f23
-
SHA512
ce47f5653939e36ca0996aa66dd8ae67bb7ec3daa08e4953d27888bdeb8f3af7d4494edd46297cacd19c333ae62cdfe2e799d8db781f6faba701bed6e764b64c
-
SSDEEP
12288:LE6rSiT4Tbs3j09TMmonCh5atbz9+eoQoUZpDd7Da1nX9y1OO/zFZx:Je103j0dMZnCutz4zI5xDwXUkm
Static task
static1
Behavioral task
behavioral1
Sample
6678c0c700a81cd5752fa4cd214feae4_JaffaCakes118.dll
Resource
win7-20231129-en
Malware Config
Extracted
dridex
10222
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
6678c0c700a81cd5752fa4cd214feae4_JaffaCakes118
-
Size
620KB
-
MD5
6678c0c700a81cd5752fa4cd214feae4
-
SHA1
593e5c032de20268d97b911dce86fe7af06d643d
-
SHA256
ff0b0878821718f9f9626ee6f60ac6268f9a3c529f18cacf485236767f249f23
-
SHA512
ce47f5653939e36ca0996aa66dd8ae67bb7ec3daa08e4953d27888bdeb8f3af7d4494edd46297cacd19c333ae62cdfe2e799d8db781f6faba701bed6e764b64c
-
SSDEEP
12288:LE6rSiT4Tbs3j09TMmonCh5atbz9+eoQoUZpDd7Da1nX9y1OO/zFZx:Je103j0dMZnCutz4zI5xDwXUkm
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-