General
-
Target
7007a934fa2fc0b0b01f8a9c9bfa8089_JaffaCakes118
-
Size
215KB
-
Sample
240524-2mpz2sdh82
-
MD5
7007a934fa2fc0b0b01f8a9c9bfa8089
-
SHA1
255bcb15e1a24a0c9154a80f14f6a4128c1ee78f
-
SHA256
c5f9abcffb2db03b37fe435cad621d8f60864db599e82daa714ffc896b4f710c
-
SHA512
1cdad644b54de0d6ea58aee097edaa083b43befb163ae9de764a643d3368434eecc7f71056b6c0bb2c925f12001acdc700fdb72c9e4c0d342771b5c1c8dc5681
-
SSDEEP
3072:Rb9pXDyUKdySqVgQZt8OdcjFfSvbke/0t4mwqWB55syoNdL0J2L6BWnqR+yV:BHXDy1qVvZnOe/HEyoAWGd
Static task
static1
Behavioral task
behavioral1
Sample
7007a934fa2fc0b0b01f8a9c9bfa8089_JaffaCakes118.exe
Resource
win7-20240419-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3153
biesbetiop.com
kircherche.com
toforemedi.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
7007a934fa2fc0b0b01f8a9c9bfa8089_JaffaCakes118
-
Size
215KB
-
MD5
7007a934fa2fc0b0b01f8a9c9bfa8089
-
SHA1
255bcb15e1a24a0c9154a80f14f6a4128c1ee78f
-
SHA256
c5f9abcffb2db03b37fe435cad621d8f60864db599e82daa714ffc896b4f710c
-
SHA512
1cdad644b54de0d6ea58aee097edaa083b43befb163ae9de764a643d3368434eecc7f71056b6c0bb2c925f12001acdc700fdb72c9e4c0d342771b5c1c8dc5681
-
SSDEEP
3072:Rb9pXDyUKdySqVgQZt8OdcjFfSvbke/0t4mwqWB55syoNdL0J2L6BWnqR+yV:BHXDy1qVvZnOe/HEyoAWGd
-