General
-
Target
8631dfab8fa9582958c35dcd358d656d_JaffaCakes118
-
Size
608KB
-
Sample
240402-h8l1qsah4t
-
MD5
8631dfab8fa9582958c35dcd358d656d
-
SHA1
4279185b4e087579117422beeee6bfed02e5c386
-
SHA256
0a72db6e23ba016fd90c93b12a59ab375d2688a03d71f3ad54399d1e9b9a505b
-
SHA512
1154b545686ee46eb82da73252002fabf64eb1c20997820cb91ad4d82bdff48c3e4c08e9a17439ac67b6f11e3053f8c8789dc901773a6d891077f2458ceb759d
-
SSDEEP
12288:RZGQdqOGZRJqydLqQSeCqsVK8kPRGO35N9mVRzXc6r:RZ0XWjeCVVK8kP9N9o9R
Static task
static1
Behavioral task
behavioral1
Sample
8631dfab8fa9582958c35dcd358d656d_JaffaCakes118.dll
Resource
win7-20240221-en
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
8631dfab8fa9582958c35dcd358d656d_JaffaCakes118
-
Size
608KB
-
MD5
8631dfab8fa9582958c35dcd358d656d
-
SHA1
4279185b4e087579117422beeee6bfed02e5c386
-
SHA256
0a72db6e23ba016fd90c93b12a59ab375d2688a03d71f3ad54399d1e9b9a505b
-
SHA512
1154b545686ee46eb82da73252002fabf64eb1c20997820cb91ad4d82bdff48c3e4c08e9a17439ac67b6f11e3053f8c8789dc901773a6d891077f2458ceb759d
-
SSDEEP
12288:RZGQdqOGZRJqydLqQSeCqsVK8kPRGO35N9mVRzXc6r:RZ0XWjeCVVK8kP9N9o9R
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-