General
-
Target
1b3adb11afeca26902875efd51b20b3f_JaffaCakes118
-
Size
215KB
-
Sample
240506-hej92sfc46
-
MD5
1b3adb11afeca26902875efd51b20b3f
-
SHA1
38887cd2efadd332cee201deedd605131282802f
-
SHA256
c1cd075980c3086a91a0c741e2c1718323413730f2eb6b61fead531b33aae5d7
-
SHA512
d0fe5203b16b0361ba6b0e156dce2775439804a284d472d586ad15d993f8ee37be4d581cc9a9ba5b1d4d18a73931629d1de5d42f440d80ed82d73a9b6996db95
-
SSDEEP
3072:Rb9pXDyUKdySqVgQZt8OdcjFfSvbke/0t4mwqWB55syoNdL0u2L6BWnqR+yV:BHXDy1qVvZnOe/HEyo9WGd
Static task
static1
Behavioral task
behavioral1
Sample
1b3adb11afeca26902875efd51b20b3f_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3153
biesbetiop.com
kircherche.com
toforemedi.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
1b3adb11afeca26902875efd51b20b3f_JaffaCakes118
-
Size
215KB
-
MD5
1b3adb11afeca26902875efd51b20b3f
-
SHA1
38887cd2efadd332cee201deedd605131282802f
-
SHA256
c1cd075980c3086a91a0c741e2c1718323413730f2eb6b61fead531b33aae5d7
-
SHA512
d0fe5203b16b0361ba6b0e156dce2775439804a284d472d586ad15d993f8ee37be4d581cc9a9ba5b1d4d18a73931629d1de5d42f440d80ed82d73a9b6996db95
-
SSDEEP
3072:Rb9pXDyUKdySqVgQZt8OdcjFfSvbke/0t4mwqWB55syoNdL0u2L6BWnqR+yV:BHXDy1qVvZnOe/HEyo9WGd
-