General
-
Target
8d27327304ac16011b1d62d136213fbe_JaffaCakes118
-
Size
1.2MB
-
Sample
240402-p553rsad3w
-
MD5
8d27327304ac16011b1d62d136213fbe
-
SHA1
f17d0c94577ef25fa92ccbfd998103f4d22d1d17
-
SHA256
2815aa497d50f42209162c298d40e32110ade6ec567b7c709d3bb52c6b3049b6
-
SHA512
2db63ccd13fa93580ae61d43969d91b23800f6b3188f5fdb71f3b2cbe63626a41c2b9e5c15d7349823fa0409614b31f5af9e9f97c4072230ead50c5cc143ee3e
-
SSDEEP
24576:zY4X+ecDqs8tQ0a3AM1l/9xh4TNRV8/V52WaVy:zY4OeWP8UQM1l/V4TNRm/V52
Static task
static1
Behavioral task
behavioral1
Sample
8d27327304ac16011b1d62d136213fbe_JaffaCakes118.exe
Resource
win7-20240319-en
Malware Config
Extracted
danabot
4
192.119.110.73:443
192.236.147.159:443
192.210.222.88:443
-
embedded_hash
F4711E27D559B4AEB1A081A1EB0AC465
-
type
loader
Targets
-
-
Target
8d27327304ac16011b1d62d136213fbe_JaffaCakes118
-
Size
1.2MB
-
MD5
8d27327304ac16011b1d62d136213fbe
-
SHA1
f17d0c94577ef25fa92ccbfd998103f4d22d1d17
-
SHA256
2815aa497d50f42209162c298d40e32110ade6ec567b7c709d3bb52c6b3049b6
-
SHA512
2db63ccd13fa93580ae61d43969d91b23800f6b3188f5fdb71f3b2cbe63626a41c2b9e5c15d7349823fa0409614b31f5af9e9f97c4072230ead50c5cc143ee3e
-
SSDEEP
24576:zY4X+ecDqs8tQ0a3AM1l/9xh4TNRV8/V52WaVy:zY4OeWP8UQM1l/V4TNRm/V52
-
Danabot Loader Component
-
Blocklisted process makes network request
-
Loads dropped DLL
-