General
-
Target
f5494f61627c8c101b403c2a3bbb5f78_JaffaCakes118
-
Size
5.3MB
-
Sample
240417-jdtmrsgh72
-
MD5
f5494f61627c8c101b403c2a3bbb5f78
-
SHA1
2d063af93542577090b87a7f58335bff7c1b6bc4
-
SHA256
d108229624c2c0b37b36268cbac9ceb8e5f9f9b25de4b555254cc1faf662576f
-
SHA512
e5322d544b2a05c4c9fefd6adf87b82bb4d69a28e23bcc4a4c73cda19d25d9913bc4d921481f78e4248909dd4d7e27dedbba3e4e653df4b950b72a869be5e75d
-
SSDEEP
98304:VxZtsVLiEf+J2xQ9n4EMWabb//0SFj7XwzbyJYsbkzBhtxuLngE4EMWabb//0SFV:VKVL1Q5MWY/02YzQby3ruk4MWY/02YzI
Behavioral task
behavioral1
Sample
f5494f61627c8c101b403c2a3bbb5f78_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
f5494f61627c8c101b403c2a3bbb5f78_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Extracted
gozi
Targets
-
-
Target
f5494f61627c8c101b403c2a3bbb5f78_JaffaCakes118
-
Size
5.3MB
-
MD5
f5494f61627c8c101b403c2a3bbb5f78
-
SHA1
2d063af93542577090b87a7f58335bff7c1b6bc4
-
SHA256
d108229624c2c0b37b36268cbac9ceb8e5f9f9b25de4b555254cc1faf662576f
-
SHA512
e5322d544b2a05c4c9fefd6adf87b82bb4d69a28e23bcc4a4c73cda19d25d9913bc4d921481f78e4248909dd4d7e27dedbba3e4e653df4b950b72a869be5e75d
-
SSDEEP
98304:VxZtsVLiEf+J2xQ9n4EMWabb//0SFj7XwzbyJYsbkzBhtxuLngE4EMWabb//0SFV:VKVL1Q5MWY/02YzQby3ruk4MWY/02YzI
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-