General
-
Target
e719dd9a4f557f350a022c98a9fcd73a_JaffaCakes118
-
Size
543KB
-
Sample
240408-kzr7hade42
-
MD5
e719dd9a4f557f350a022c98a9fcd73a
-
SHA1
6b19ce067b8660b8ae18aae3231d7f6d6e52f4f9
-
SHA256
34f4d80e0d5869bf849227723f2d55f79d0e8a26b9fb4b6572d7d4888386720e
-
SHA512
9166ae7f440f69aaa7b437812f83882ff9fe4d73f0ca80e3e516b4d0233b1e146ab4973fc5cdc53dc20849233b8039292162a3f465651a96bb1b2cdb785d6722
-
SSDEEP
12288:KaM05j1f/QOwOSnV8Eh3doxeNZNN2lFzx3ycxXs4:Kanz3E4INX03ycxc4
Static task
static1
Behavioral task
behavioral1
Sample
e719dd9a4f557f350a022c98a9fcd73a_JaffaCakes118.dll
Resource
win7-20240221-en
Malware Config
Extracted
gozi
Extracted
gozi
8877
outlook.com
zaluoa.live
daskdjknefjkewfnkjwe.net
-
base_path
/jkloop/
-
build
250207
-
dga_season
10
-
exe_type
loader
-
extension
.kre
-
server_id
12
Targets
-
-
Target
e719dd9a4f557f350a022c98a9fcd73a_JaffaCakes118
-
Size
543KB
-
MD5
e719dd9a4f557f350a022c98a9fcd73a
-
SHA1
6b19ce067b8660b8ae18aae3231d7f6d6e52f4f9
-
SHA256
34f4d80e0d5869bf849227723f2d55f79d0e8a26b9fb4b6572d7d4888386720e
-
SHA512
9166ae7f440f69aaa7b437812f83882ff9fe4d73f0ca80e3e516b4d0233b1e146ab4973fc5cdc53dc20849233b8039292162a3f465651a96bb1b2cdb785d6722
-
SSDEEP
12288:KaM05j1f/QOwOSnV8Eh3doxeNZNN2lFzx3ycxXs4:Kanz3E4INX03ycxc4
-