General
-
Target
e129757a845643e9ca0351b5de98c645_JaffaCakes118
-
Size
608KB
-
Sample
240406-lbbehsfa9t
-
MD5
e129757a845643e9ca0351b5de98c645
-
SHA1
76a960be8450bcf463253a07a47907353807a6ac
-
SHA256
6810e3a70db8ea767cc53e5671ca6c7692e420b2e87fffba17da99c337c03770
-
SHA512
159d1d67dfc56997aeab0fe4eda86a231121d98a16a6e1565ff82e1b3e1d030c725f620b4e7aab8f63ee6a5c0471d1c0ba8a0e851219d94e81953372b804daaa
-
SSDEEP
12288:kZGQdqOG1hJqydLqQSeCqsVK8kPRGO35N9mVNzXc6:kZ0TWjeCVVK8kP9N9oR
Static task
static1
Behavioral task
behavioral1
Sample
e129757a845643e9ca0351b5de98c645_JaffaCakes118.dll
Resource
win7-20231129-en
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
e129757a845643e9ca0351b5de98c645_JaffaCakes118
-
Size
608KB
-
MD5
e129757a845643e9ca0351b5de98c645
-
SHA1
76a960be8450bcf463253a07a47907353807a6ac
-
SHA256
6810e3a70db8ea767cc53e5671ca6c7692e420b2e87fffba17da99c337c03770
-
SHA512
159d1d67dfc56997aeab0fe4eda86a231121d98a16a6e1565ff82e1b3e1d030c725f620b4e7aab8f63ee6a5c0471d1c0ba8a0e851219d94e81953372b804daaa
-
SSDEEP
12288:kZGQdqOG1hJqydLqQSeCqsVK8kPRGO35N9mVNzXc6:kZ0TWjeCVVK8kP9N9oR
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-