General
-
Target
68a696dbadb5f0c0e00568eba7283e46_JaffaCakes118
-
Size
297KB
-
Sample
240522-z1kw5sgg8w
-
MD5
68a696dbadb5f0c0e00568eba7283e46
-
SHA1
e46e26a21654f80b5a009a02a80d08025641a09c
-
SHA256
27922dcf3ce8d7c92cfcead3b8418da0565a63e563517d8023ea16f3df016fe6
-
SHA512
ecbdcaee34c72422cb6749c3ea687282d325f1cb99acdfbae61a0b8bd1dfa404383df09ff652ba0eee5c85f3ad97b5da2383338a42bbb7cbfe8a19a1e4cdfd93
-
SSDEEP
6144:cyCwZntdUnKTcdycMb9rLtDbF6WT2dc+BCcJrbL:cl1nKodycAhlyB
Static task
static1
Behavioral task
behavioral1
Sample
68a696dbadb5f0c0e00568eba7283e46_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Extracted
gozi
9898
mcc.avast.com
line.starlightgroupllc.com
-
build
214138
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
68a696dbadb5f0c0e00568eba7283e46_JaffaCakes118
-
Size
297KB
-
MD5
68a696dbadb5f0c0e00568eba7283e46
-
SHA1
e46e26a21654f80b5a009a02a80d08025641a09c
-
SHA256
27922dcf3ce8d7c92cfcead3b8418da0565a63e563517d8023ea16f3df016fe6
-
SHA512
ecbdcaee34c72422cb6749c3ea687282d325f1cb99acdfbae61a0b8bd1dfa404383df09ff652ba0eee5c85f3ad97b5da2383338a42bbb7cbfe8a19a1e4cdfd93
-
SSDEEP
6144:cyCwZntdUnKTcdycMb9rLtDbF6WT2dc+BCcJrbL:cl1nKodycAhlyB
-