General
-
Target
811afd908ebdb2e0c9317972d27d97bd_JaffaCakes118
-
Size
203KB
-
Sample
240529-r48tdaad94
-
MD5
811afd908ebdb2e0c9317972d27d97bd
-
SHA1
f3a46f11d389750f95dd9a4504eb9ff1ada82486
-
SHA256
a67c6d8f578ba1b863128d8e00f2a59ec83ea7b3a2a114773e4136692cd1e7be
-
SHA512
e8c7c50bf0d1629102065c1043e6afc3478de5741e3a90b80e4998192596bbf100553753f004af2a0b769cdf0b267552eb46a408e6be71cc3a6ca95cb779cc2d
-
SSDEEP
3072:9Bji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:91dp4uPZzGonqXGXh0bluBc4GZ5
Static task
static1
Behavioral task
behavioral1
Sample
811afd908ebdb2e0c9317972d27d97bd_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
811afd908ebdb2e0c9317972d27d97bd_JaffaCakes118
-
Size
203KB
-
MD5
811afd908ebdb2e0c9317972d27d97bd
-
SHA1
f3a46f11d389750f95dd9a4504eb9ff1ada82486
-
SHA256
a67c6d8f578ba1b863128d8e00f2a59ec83ea7b3a2a114773e4136692cd1e7be
-
SHA512
e8c7c50bf0d1629102065c1043e6afc3478de5741e3a90b80e4998192596bbf100553753f004af2a0b769cdf0b267552eb46a408e6be71cc3a6ca95cb779cc2d
-
SSDEEP
3072:9Bji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:91dp4uPZzGonqXGXh0bluBc4GZ5
-