General
-
Target
7417d80672777d238bf862a4e0ec0cbc_JaffaCakes118
-
Size
608KB
-
Sample
240401-s9mzjahd24
-
MD5
7417d80672777d238bf862a4e0ec0cbc
-
SHA1
30635c544bfb772bc2fb4bfe4492b543421327b6
-
SHA256
24894bc7143f4da6307120f98979432021b92e3b1b9c86e59abdb60dac9ccce2
-
SHA512
dcf81a995f771b3e34a42c56ebcedb820808fca1a24ab0223868d5148248595a0cd4bcc6d605a0853840f188eeb3f587d134c38619c20e41319a42e240a43988
-
SSDEEP
12288:SZGQdqOG4DJqydLqQSeCqsVK8kPRGO35N9mVPzXc6:SZ0CWjeCVVK8kP9N9oL
Static task
static1
Behavioral task
behavioral1
Sample
7417d80672777d238bf862a4e0ec0cbc_JaffaCakes118.dll
Resource
win7-20240221-en
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
7417d80672777d238bf862a4e0ec0cbc_JaffaCakes118
-
Size
608KB
-
MD5
7417d80672777d238bf862a4e0ec0cbc
-
SHA1
30635c544bfb772bc2fb4bfe4492b543421327b6
-
SHA256
24894bc7143f4da6307120f98979432021b92e3b1b9c86e59abdb60dac9ccce2
-
SHA512
dcf81a995f771b3e34a42c56ebcedb820808fca1a24ab0223868d5148248595a0cd4bcc6d605a0853840f188eeb3f587d134c38619c20e41319a42e240a43988
-
SSDEEP
12288:SZGQdqOG4DJqydLqQSeCqsVK8kPRGO35N9mVPzXc6:SZ0CWjeCVVK8kP9N9oL
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-