General
-
Target
e9027b7a0eaef3898d92d223f8cd247c_JaffaCakes118
-
Size
608KB
-
Sample
240409-cz3dgafd6w
-
MD5
e9027b7a0eaef3898d92d223f8cd247c
-
SHA1
b86192eacd431c476b4da29f75909aa2f45ac859
-
SHA256
c165baea95336c04c9e643b60edd15e1312a370cd232c0152a62b99138ec4cbd
-
SHA512
d248ac046e4590effdfca32941bc4d3e92a9d618a9ac568223d64dada99f049d1a0329e0a6ee962f7bc549cb6945e53170c5c584ebf58010bfdbd5e786abd49d
-
SSDEEP
12288:EZGQdqOGuGJqydLqQSeCqsVK8kPRGO35N9mVyzXc6:EZ0hWjeCVVK8kP9N9o2
Static task
static1
Behavioral task
behavioral1
Sample
e9027b7a0eaef3898d92d223f8cd247c_JaffaCakes118.dll
Resource
win7-20231129-en
Malware Config
Extracted
dridex
10444
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
e9027b7a0eaef3898d92d223f8cd247c_JaffaCakes118
-
Size
608KB
-
MD5
e9027b7a0eaef3898d92d223f8cd247c
-
SHA1
b86192eacd431c476b4da29f75909aa2f45ac859
-
SHA256
c165baea95336c04c9e643b60edd15e1312a370cd232c0152a62b99138ec4cbd
-
SHA512
d248ac046e4590effdfca32941bc4d3e92a9d618a9ac568223d64dada99f049d1a0329e0a6ee962f7bc549cb6945e53170c5c584ebf58010bfdbd5e786abd49d
-
SSDEEP
12288:EZGQdqOGuGJqydLqQSeCqsVK8kPRGO35N9mVyzXc6:EZ0hWjeCVVK8kP9N9o2
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-