General
-
Target
83aca2e839785489476f6ea92cb46d69_JaffaCakes118
-
Size
608KB
-
Sample
240402-e4pz2sge8y
-
MD5
83aca2e839785489476f6ea92cb46d69
-
SHA1
682bcc907ebccb5739d18bc2fa6747c72bed4bae
-
SHA256
09da03adfb32add00427811716b6a2bbe899ef307a5a0a2e15983bf957ed3992
-
SHA512
b3643f56350d3362133ac3b37e026740e53e1224a3559651c78430d2088638dcf37db59fb981ff3b23a6ef591b214816082967247687e56fe80d885bc8572010
-
SSDEEP
12288:2ZGQdqOGRNJqydLqQSeCqsVK8kPRGO35N9mVNzXc6:2Z07WjeCVVK8kP9N9oR
Static task
static1
Behavioral task
behavioral1
Sample
83aca2e839785489476f6ea92cb46d69_JaffaCakes118.dll
Resource
win7-20240221-en
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
83aca2e839785489476f6ea92cb46d69_JaffaCakes118
-
Size
608KB
-
MD5
83aca2e839785489476f6ea92cb46d69
-
SHA1
682bcc907ebccb5739d18bc2fa6747c72bed4bae
-
SHA256
09da03adfb32add00427811716b6a2bbe899ef307a5a0a2e15983bf957ed3992
-
SHA512
b3643f56350d3362133ac3b37e026740e53e1224a3559651c78430d2088638dcf37db59fb981ff3b23a6ef591b214816082967247687e56fe80d885bc8572010
-
SSDEEP
12288:2ZGQdqOGRNJqydLqQSeCqsVK8kPRGO35N9mVNzXc6:2Z07WjeCVVK8kP9N9oR
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-