General
-
Target
5ee2a62c15ecd50ffa942b373070b9d1_JaffaCakes118
-
Size
372KB
-
Sample
240520-nvrxqahf94
-
MD5
5ee2a62c15ecd50ffa942b373070b9d1
-
SHA1
f234703b4dba4692ed6bc81b9c6bb3936515b7af
-
SHA256
ab0481d9397c88f9f3d1922865157981c122f36cbd9e06b5ff2b6cece14df4f7
-
SHA512
ec7c73bff6fc6a82c8a90043de14451e4a2f079b78b3117a134ae1fa7246b1ab8260bfa1e959b77a6228d8eb497cb99e8c7bf8ba736b34b61d36935615ab33f1
-
SSDEEP
6144:QfsvEug4/COMAIOVW3Uqz/HJpadR5FzggF:QKEufaORxezE5Fz
Static task
static1
Behavioral task
behavioral1
Sample
5ee2a62c15ecd50ffa942b373070b9d1_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
gozi
-
build
214062
Extracted
gozi
3181
bm25yp.com
xiivhaaou.email
m264591jasen.city
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
5ee2a62c15ecd50ffa942b373070b9d1_JaffaCakes118
-
Size
372KB
-
MD5
5ee2a62c15ecd50ffa942b373070b9d1
-
SHA1
f234703b4dba4692ed6bc81b9c6bb3936515b7af
-
SHA256
ab0481d9397c88f9f3d1922865157981c122f36cbd9e06b5ff2b6cece14df4f7
-
SHA512
ec7c73bff6fc6a82c8a90043de14451e4a2f079b78b3117a134ae1fa7246b1ab8260bfa1e959b77a6228d8eb497cb99e8c7bf8ba736b34b61d36935615ab33f1
-
SSDEEP
6144:QfsvEug4/COMAIOVW3Uqz/HJpadR5FzggF:QKEufaORxezE5Fz
-