General
-
Target
a9d1f0de1aed1c1ca5cd2037e0cea6df_JaffaCakes118
-
Size
608KB
-
Sample
240403-3prr4agd8s
-
MD5
a9d1f0de1aed1c1ca5cd2037e0cea6df
-
SHA1
c7647a634a31728c70419e9bacb2692fcf66d288
-
SHA256
892b630fe945ddbdb9ceda6c3b5b81a83119714d487ea4b14e83f0460852fe9d
-
SHA512
b2e0bde7833d81b1b6973ee5c464f79223d8b7cc6b98ab38e99087ea2a39e245a3a5af8c285b1a815e742b65f6a4af6c23a48818f2b67c3516d2c0d708ed8021
-
SSDEEP
12288:dZGQdqOGR5JqydLqQSeCqsVK8kPRGO35N9mV1zXc6W:dZ0fWjeCVVK8kP9N9oJc
Static task
static1
Behavioral task
behavioral1
Sample
a9d1f0de1aed1c1ca5cd2037e0cea6df_JaffaCakes118.dll
Resource
win7-20240221-en
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
a9d1f0de1aed1c1ca5cd2037e0cea6df_JaffaCakes118
-
Size
608KB
-
MD5
a9d1f0de1aed1c1ca5cd2037e0cea6df
-
SHA1
c7647a634a31728c70419e9bacb2692fcf66d288
-
SHA256
892b630fe945ddbdb9ceda6c3b5b81a83119714d487ea4b14e83f0460852fe9d
-
SHA512
b2e0bde7833d81b1b6973ee5c464f79223d8b7cc6b98ab38e99087ea2a39e245a3a5af8c285b1a815e742b65f6a4af6c23a48818f2b67c3516d2c0d708ed8021
-
SSDEEP
12288:dZGQdqOGR5JqydLqQSeCqsVK8kPRGO35N9mV1zXc6W:dZ0fWjeCVVK8kP9N9oJc
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-