General
-
Target
15d1a3417eab211b536dfb63841c15f2_JaffaCakes118
-
Size
648KB
-
Sample
240505-d84tbsha28
-
MD5
15d1a3417eab211b536dfb63841c15f2
-
SHA1
d18cfdf465da27a66db7c621f1e73c71e7379c92
-
SHA256
a92d23b9be2e9272b4116a57bb363099bab062cbd0137bbd285c67b2b4835a2c
-
SHA512
114e482301e43adb9b78040ece6549cb4ec130bb806026aba607760a421ae0eabf4f4515b7ab01ebacd64e8a14edbaba463f8685fc69406f6a0e20142f49ed53
-
SSDEEP
6144:Q5mTEHUok+1NjIjODnupJnMZLrSPm4JZM1o7SVMVVadETPjSjCv4RgSNY5v6:Q5wEH3kEDnQdM9rEju0TH4l
Static task
static1
Behavioral task
behavioral1
Sample
15d1a3417eab211b536dfb63841c15f2_JaffaCakes118.exe
Resource
win7-20240220-en
Malware Config
Extracted
gozi
-
build
214062
Extracted
gozi
3189
hfmjerrodo.com
w19jackyivah.com
l15uniquekylie.city
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
15d1a3417eab211b536dfb63841c15f2_JaffaCakes118
-
Size
648KB
-
MD5
15d1a3417eab211b536dfb63841c15f2
-
SHA1
d18cfdf465da27a66db7c621f1e73c71e7379c92
-
SHA256
a92d23b9be2e9272b4116a57bb363099bab062cbd0137bbd285c67b2b4835a2c
-
SHA512
114e482301e43adb9b78040ece6549cb4ec130bb806026aba607760a421ae0eabf4f4515b7ab01ebacd64e8a14edbaba463f8685fc69406f6a0e20142f49ed53
-
SSDEEP
6144:Q5mTEHUok+1NjIjODnupJnMZLrSPm4JZM1o7SVMVVadETPjSjCv4RgSNY5v6:Q5wEH3kEDnQdM9rEju0TH4l
-