General
-
Target
3a6ec9834ea8095affc1aaa855196ce5_JaffaCakes118
-
Size
3.7MB
-
Sample
240512-q5d5qahc3z
-
MD5
3a6ec9834ea8095affc1aaa855196ce5
-
SHA1
b5517643631040cfa2ea6c46893d7fbd771dc4e3
-
SHA256
fd6deb1a8667fb94de3448cd7d83c87457718fa38b3c3228e40559ea991c03a5
-
SHA512
a6b3d982c3ea44498cca9b9d6791f8dc80c5d4913189530fed390abce5d7f2ac846274fa9e12742f31e3668071e9c5d401182f89e5afa0d9b1ea13b2988feef8
-
SSDEEP
49152:y+EeyG//rasoeodqlOdN8n+uwyme4oAOiWEvujAW61QXoTvI1k:XEc7oeoMliyb7MEAzQ4T
Static task
static1
Behavioral task
behavioral1
Sample
3a6ec9834ea8095affc1aaa855196ce5_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
gozi
-
build
214098
Extracted
gozi
3523
fortinet.com
symantec.com
z39bldfq.com
r79xhiram81ue.com
mlqlqewh.com
-
build
214098
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
3a6ec9834ea8095affc1aaa855196ce5_JaffaCakes118
-
Size
3.7MB
-
MD5
3a6ec9834ea8095affc1aaa855196ce5
-
SHA1
b5517643631040cfa2ea6c46893d7fbd771dc4e3
-
SHA256
fd6deb1a8667fb94de3448cd7d83c87457718fa38b3c3228e40559ea991c03a5
-
SHA512
a6b3d982c3ea44498cca9b9d6791f8dc80c5d4913189530fed390abce5d7f2ac846274fa9e12742f31e3668071e9c5d401182f89e5afa0d9b1ea13b2988feef8
-
SSDEEP
49152:y+EeyG//rasoeodqlOdN8n+uwyme4oAOiWEvujAW61QXoTvI1k:XEc7oeoMliyb7MEAzQ4T
-