General
-
Target
676514125157e96345e544a2c72a4844_JaffaCakes118
-
Size
620KB
-
Sample
240401-es8b9adc8t
-
MD5
676514125157e96345e544a2c72a4844
-
SHA1
7063a2dd1e3b2d27ae864198e3df8b5b6ba9c5ef
-
SHA256
06e41c9e1128631c9e0c2174ed4b367d0f6ed7e3481fdcc95b24d66edd02a45f
-
SHA512
6b8805920b47e1334f72e2c9ad6a3c67ebf0f38613e22883871ba2761a1372cddf745f9a9fa2147b452dc95249290429ea5e60011b6ae60d024934af8f4e636d
-
SSDEEP
12288:CE6rSir4nbs3j09TMmonCh5atbz9+eoQoUZpDd7Da1nX9y1CO/zFZx:oe143j0dMZnCutz4zI5xDwXUom
Static task
static1
Behavioral task
behavioral1
Sample
676514125157e96345e544a2c72a4844_JaffaCakes118.dll
Resource
win7-20240221-en
Malware Config
Extracted
dridex
10222
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
676514125157e96345e544a2c72a4844_JaffaCakes118
-
Size
620KB
-
MD5
676514125157e96345e544a2c72a4844
-
SHA1
7063a2dd1e3b2d27ae864198e3df8b5b6ba9c5ef
-
SHA256
06e41c9e1128631c9e0c2174ed4b367d0f6ed7e3481fdcc95b24d66edd02a45f
-
SHA512
6b8805920b47e1334f72e2c9ad6a3c67ebf0f38613e22883871ba2761a1372cddf745f9a9fa2147b452dc95249290429ea5e60011b6ae60d024934af8f4e636d
-
SSDEEP
12288:CE6rSir4nbs3j09TMmonCh5atbz9+eoQoUZpDd7Da1nX9y1CO/zFZx:oe143j0dMZnCutz4zI5xDwXUom
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-