General
-
Target
ff7d90cc31df2f30f3354f752e141119_JaffaCakes118
-
Size
664KB
-
Sample
240421-rs3szsdc48
-
MD5
ff7d90cc31df2f30f3354f752e141119
-
SHA1
ae4325f952f54eee55fa40d86edef21a8178604a
-
SHA256
5a3cdc0407eeeab47abdd8d80d1190f50cd10489d8a7eab22e77a2bf83e4f8c0
-
SHA512
b187f506c6a2f9644ea3f707d997b7ff3f21857139d1eb31c1408d950353d6a921d8664d36167e07717ab128097e397a4b87a30a38a76cf5dff76478adb4f1a9
-
SSDEEP
12288:y/0Qzqf0eZi48FM+6TFKywVt6PbEYU0eyJTT/Mu9oV01uxoaEP:Y0zhZ2n6TFKywvCbEOxDMu9oyPaEP
Static task
static1
Behavioral task
behavioral1
Sample
ff7d90cc31df2f30f3354f752e141119_JaffaCakes118.dll
Resource
win7-20240221-en
Malware Config
Extracted
dridex
10222
174.128.245.202:443
51.83.3.52:13786
69.64.50.41:6602
Targets
-
-
Target
ff7d90cc31df2f30f3354f752e141119_JaffaCakes118
-
Size
664KB
-
MD5
ff7d90cc31df2f30f3354f752e141119
-
SHA1
ae4325f952f54eee55fa40d86edef21a8178604a
-
SHA256
5a3cdc0407eeeab47abdd8d80d1190f50cd10489d8a7eab22e77a2bf83e4f8c0
-
SHA512
b187f506c6a2f9644ea3f707d997b7ff3f21857139d1eb31c1408d950353d6a921d8664d36167e07717ab128097e397a4b87a30a38a76cf5dff76478adb4f1a9
-
SSDEEP
12288:y/0Qzqf0eZi48FM+6TFKywVt6PbEYU0eyJTT/Mu9oV01uxoaEP:Y0zhZ2n6TFKywvCbEOxDMu9oyPaEP
-
Blocklisted process makes network request
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-