General
-
Target
0fec8241074bc12177e09e456ae9265d_JaffaCakes118
-
Size
203KB
-
Sample
240503-hqr42ahe31
-
MD5
0fec8241074bc12177e09e456ae9265d
-
SHA1
8d399133e1c3f1b29b2e200ba91c11fd2a187780
-
SHA256
0677fdd75e2314cfda2991b1506af60ed271169ff0a179771d8a8107644cb06a
-
SHA512
a2acfa48f09384100c4bd8bc98e5a73bf7ee7a5360561d405904c579365ad06a9503bb947391b76bba474cfae139b06e1231b67e10d924519f951699962d445e
-
SSDEEP
3072:94ji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:9ydp4uPZzGonqXGXh0bluBc4GZ5
Static task
static1
Behavioral task
behavioral1
Sample
0fec8241074bc12177e09e456ae9265d_JaffaCakes118.exe
Resource
win7-20240419-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
0fec8241074bc12177e09e456ae9265d_JaffaCakes118
-
Size
203KB
-
MD5
0fec8241074bc12177e09e456ae9265d
-
SHA1
8d399133e1c3f1b29b2e200ba91c11fd2a187780
-
SHA256
0677fdd75e2314cfda2991b1506af60ed271169ff0a179771d8a8107644cb06a
-
SHA512
a2acfa48f09384100c4bd8bc98e5a73bf7ee7a5360561d405904c579365ad06a9503bb947391b76bba474cfae139b06e1231b67e10d924519f951699962d445e
-
SSDEEP
3072:94ji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:9ydp4uPZzGonqXGXh0bluBc4GZ5
-