General
-
Target
873d1b45b6a80a3fd6902b62ff8df109_JaffaCakes118
-
Size
608KB
-
Sample
240402-j4wj2scb24
-
MD5
873d1b45b6a80a3fd6902b62ff8df109
-
SHA1
31a40fa44faa7e7d29b7ef771eddb63d1042cc76
-
SHA256
aeb45cb83ec9ed763640a9ddbeb7ac360b10f31e5edabaa72987ab82b7631a06
-
SHA512
56bbfe7ba9a7996e0174414100e58b4cac44248f7065a703855f41406be59f01d5cf86dbe690944bead455913f4ee6fc445b67517078aea3703418dd30911e2d
-
SSDEEP
12288:ZZGQdqOG3KJqydLqQSeCqsVK8kPRGO35N9mVyzXc6:ZZ0yWjeCVVK8kP9N9o2
Static task
static1
Behavioral task
behavioral1
Sample
873d1b45b6a80a3fd6902b62ff8df109_JaffaCakes118.dll
Resource
win7-20240221-en
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
873d1b45b6a80a3fd6902b62ff8df109_JaffaCakes118
-
Size
608KB
-
MD5
873d1b45b6a80a3fd6902b62ff8df109
-
SHA1
31a40fa44faa7e7d29b7ef771eddb63d1042cc76
-
SHA256
aeb45cb83ec9ed763640a9ddbeb7ac360b10f31e5edabaa72987ab82b7631a06
-
SHA512
56bbfe7ba9a7996e0174414100e58b4cac44248f7065a703855f41406be59f01d5cf86dbe690944bead455913f4ee6fc445b67517078aea3703418dd30911e2d
-
SSDEEP
12288:ZZGQdqOG3KJqydLqQSeCqsVK8kPRGO35N9mVyzXc6:ZZ0yWjeCVVK8kP9N9o2
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-