General
-
Target
37e28ba51e48b800508a7a175376e22e_JaffaCakes118
-
Size
250KB
-
Sample
240512-dera5sgb83
-
MD5
37e28ba51e48b800508a7a175376e22e
-
SHA1
355161b3135e9c2c962b3e333e7f48c3802b305e
-
SHA256
e09755fd3d305a65619846f8b1a1f65008c51f39e2842b2a89e5f5d37013d17b
-
SHA512
707a7c76481aee315776bf25ffdc4127441a4f28452575e075a09d109c281bd6163d2cb879f4013d53ea7767d10d92963bc761a66da4db32628682c8de54a090
-
SSDEEP
3072:IFNthWQl/rSJ7lvt9filcZritkrINAEYsm2:IBhWQ/mJLflrOAp2
Static task
static1
Behavioral task
behavioral1
Sample
37e28ba51e48b800508a7a175376e22e_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Extracted
gozi
-
build
300913
Extracted
gozi
92020311
https://appealingedge.xyz
-
build
300913
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
non_target_locale
RU
-
server_id
12
-
url_path
index.htm
Targets
-
-
Target
37e28ba51e48b800508a7a175376e22e_JaffaCakes118
-
Size
250KB
-
MD5
37e28ba51e48b800508a7a175376e22e
-
SHA1
355161b3135e9c2c962b3e333e7f48c3802b305e
-
SHA256
e09755fd3d305a65619846f8b1a1f65008c51f39e2842b2a89e5f5d37013d17b
-
SHA512
707a7c76481aee315776bf25ffdc4127441a4f28452575e075a09d109c281bd6163d2cb879f4013d53ea7767d10d92963bc761a66da4db32628682c8de54a090
-
SSDEEP
3072:IFNthWQl/rSJ7lvt9filcZritkrINAEYsm2:IBhWQ/mJLflrOAp2
-