General
-
Target
c44bead62aa28d1f095ee5c78da56aea_JaffaCakes118
-
Size
1.3MB
-
Sample
240404-25xslsda6s
-
MD5
c44bead62aa28d1f095ee5c78da56aea
-
SHA1
13bfc226d6b5a937432bdeab8ef48918d2da7eb4
-
SHA256
4841c0944dd9019e1dafe84c44cf62ab066155a1b5441e8931381e61dadee4de
-
SHA512
24550b7df3f0bfc692be63032929db94d5c98a2eacb0223674754f6e87e10707ff47117ae711e918b2cf1951f06ebe80d5b7796c17d434ce542ebb0e9410247f
-
SSDEEP
24576:KncFdxcZ3Mn9C2vOte0kS+RB39lTlotZT9uy6:BT2FBY9lcTIy6
Behavioral task
behavioral1
Sample
c44bead62aa28d1f095ee5c78da56aea_JaffaCakes118.dll
Resource
win7-20240220-en
Malware Config
Extracted
danabot
4
142.11.242.31:443
192.119.110.73:443
192.210.222.88:443
-
embedded_hash
F4711E27D559B4AEB1A081A1EB0AC465
-
type
loader
Targets
-
-
Target
c44bead62aa28d1f095ee5c78da56aea_JaffaCakes118
-
Size
1.3MB
-
MD5
c44bead62aa28d1f095ee5c78da56aea
-
SHA1
13bfc226d6b5a937432bdeab8ef48918d2da7eb4
-
SHA256
4841c0944dd9019e1dafe84c44cf62ab066155a1b5441e8931381e61dadee4de
-
SHA512
24550b7df3f0bfc692be63032929db94d5c98a2eacb0223674754f6e87e10707ff47117ae711e918b2cf1951f06ebe80d5b7796c17d434ce542ebb0e9410247f
-
SSDEEP
24576:KncFdxcZ3Mn9C2vOte0kS+RB39lTlotZT9uy6:BT2FBY9lcTIy6
-
Danabot Loader Component
-
Blocklisted process makes network request
-