General
-
Target
65a5bafeff81faaf8a46e737857458fc_JaffaCakes118
-
Size
203KB
-
Sample
240522-cms92aha58
-
MD5
65a5bafeff81faaf8a46e737857458fc
-
SHA1
6a683a0f8b93fafe295e9a29153e07e80bd0c5e4
-
SHA256
79fc6e50e92e8eef73f0740a64e92798adaee64dd9b4b1b11601c699c7adca1c
-
SHA512
939d15c785720020a0b9501c7f1c76c15d42d94faf1a1c98422ffd7feda03ed0ffe67fc59ed8e07072fa1af5fe52c921c2f9a987bada6c4bc6cc6f0cbdf67a94
-
SSDEEP
3072:9wji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:9Kdp4uPZzGonqXGXh0bluBc4GZ5
Static task
static1
Behavioral task
behavioral1
Sample
65a5bafeff81faaf8a46e737857458fc_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
65a5bafeff81faaf8a46e737857458fc_JaffaCakes118
-
Size
203KB
-
MD5
65a5bafeff81faaf8a46e737857458fc
-
SHA1
6a683a0f8b93fafe295e9a29153e07e80bd0c5e4
-
SHA256
79fc6e50e92e8eef73f0740a64e92798adaee64dd9b4b1b11601c699c7adca1c
-
SHA512
939d15c785720020a0b9501c7f1c76c15d42d94faf1a1c98422ffd7feda03ed0ffe67fc59ed8e07072fa1af5fe52c921c2f9a987bada6c4bc6cc6f0cbdf67a94
-
SSDEEP
3072:9wji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:9Kdp4uPZzGonqXGXh0bluBc4GZ5
-