General
-
Target
431549eb0a7fe1fda8739151c5c73059_JaffaCakes118
-
Size
372KB
-
Sample
240514-zy79nage5z
-
MD5
431549eb0a7fe1fda8739151c5c73059
-
SHA1
76d6af4986040225e48c9e21f2207def6dbbbde6
-
SHA256
7960a96e1dd1172562ff5162b5b093baa53065b686beaa0653390766a3a3c14a
-
SHA512
71cb8df11f398e6650d1eb4400454aba9f0926de76132dba7d352adab11a92c92ea7c7cc818c15c232cb82cb29933b6a1da8079bb748976944ad68f3063f9fa9
-
SSDEEP
6144:QfsvEug4/COMAIOVW3Uqz/HJpadR5FzBgF:QKEufaORxezE5Fz
Static task
static1
Behavioral task
behavioral1
Sample
431549eb0a7fe1fda8739151c5c73059_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
gozi
-
build
214062
Extracted
gozi
3181
bm25yp.com
xiivhaaou.email
m264591jasen.city
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
431549eb0a7fe1fda8739151c5c73059_JaffaCakes118
-
Size
372KB
-
MD5
431549eb0a7fe1fda8739151c5c73059
-
SHA1
76d6af4986040225e48c9e21f2207def6dbbbde6
-
SHA256
7960a96e1dd1172562ff5162b5b093baa53065b686beaa0653390766a3a3c14a
-
SHA512
71cb8df11f398e6650d1eb4400454aba9f0926de76132dba7d352adab11a92c92ea7c7cc818c15c232cb82cb29933b6a1da8079bb748976944ad68f3063f9fa9
-
SSDEEP
6144:QfsvEug4/COMAIOVW3Uqz/HJpadR5FzBgF:QKEufaORxezE5Fz
-