General
-
Target
4437181d49e96f3274f19f142a5718a1_JaffaCakes118
-
Size
203KB
-
Sample
240515-c5t92sdd3w
-
MD5
4437181d49e96f3274f19f142a5718a1
-
SHA1
4c95f579dccc69282090f4ddc89cd73c7aa22b47
-
SHA256
419550a6e4d323506dac1a43c9cf40cf019b3965354e711f253afef12fd57fa6
-
SHA512
53c41e6be9c13df149b8ea19864e32945c96cf1d1adf4cc32a33e7af81699595f4072bc3a538ff686d06697f5f6071101b91891db052b2f0feb400138b501564
-
SSDEEP
3072:9Vji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:95dp4uPZzGonqXGXh0bluBc4GZ5
Static task
static1
Behavioral task
behavioral1
Sample
4437181d49e96f3274f19f142a5718a1_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
4437181d49e96f3274f19f142a5718a1_JaffaCakes118
-
Size
203KB
-
MD5
4437181d49e96f3274f19f142a5718a1
-
SHA1
4c95f579dccc69282090f4ddc89cd73c7aa22b47
-
SHA256
419550a6e4d323506dac1a43c9cf40cf019b3965354e711f253afef12fd57fa6
-
SHA512
53c41e6be9c13df149b8ea19864e32945c96cf1d1adf4cc32a33e7af81699595f4072bc3a538ff686d06697f5f6071101b91891db052b2f0feb400138b501564
-
SSDEEP
3072:9Vji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:95dp4uPZzGonqXGXh0bluBc4GZ5
-