General
-
Target
b685d84d71de2f4753106d3b439c4a37_JaffaCakes118
-
Size
1.3MB
-
Sample
240404-m2tt8ach9y
-
MD5
b685d84d71de2f4753106d3b439c4a37
-
SHA1
17cbff6d38a4d83018c36c6b96ef77ffb6c639aa
-
SHA256
e7906395b858d072a6edba11e045a52761cff40aeb97268cddf99ba9d70c66e4
-
SHA512
d1b1a1f9250623b758285e8b8e7c6ece8e01023979a5b36b746fbe74b8c114c7775029a3eb77718dad34a11d6c0c4759382152e9f777d8556d81a510cc82d3e8
-
SSDEEP
24576:x8FGMpHdFpe260FF+GlerIW1wK5//KIBtfTOGekn1:yJdNl2IWqKdiufTxeW
Behavioral task
behavioral1
Sample
b685d84d71de2f4753106d3b439c4a37_JaffaCakes118.dll
Resource
win7-20231129-en
Malware Config
Extracted
danabot
4
192.119.110.73:443
192.236.147.159:443
192.210.222.88:443
-
embedded_hash
F4711E27D559B4AEB1A081A1EB0AC465
-
type
loader
Targets
-
-
Target
b685d84d71de2f4753106d3b439c4a37_JaffaCakes118
-
Size
1.3MB
-
MD5
b685d84d71de2f4753106d3b439c4a37
-
SHA1
17cbff6d38a4d83018c36c6b96ef77ffb6c639aa
-
SHA256
e7906395b858d072a6edba11e045a52761cff40aeb97268cddf99ba9d70c66e4
-
SHA512
d1b1a1f9250623b758285e8b8e7c6ece8e01023979a5b36b746fbe74b8c114c7775029a3eb77718dad34a11d6c0c4759382152e9f777d8556d81a510cc82d3e8
-
SSDEEP
24576:x8FGMpHdFpe260FF+GlerIW1wK5//KIBtfTOGekn1:yJdNl2IWqKdiufTxeW
-
Danabot Loader Component
-
Blocklisted process makes network request
-