General
-
Target
8a181685b455937c2a60f9336e67f487_JaffaCakes118
-
Size
376KB
-
Sample
240601-ltrt8aaa85
-
MD5
8a181685b455937c2a60f9336e67f487
-
SHA1
57d9b086f16904c9deb0b3591a1fc64cc09dc8b1
-
SHA256
55d7621989b64512ccee37bac287fb9e878952e4b158d34a700cd2c730c8b604
-
SHA512
c4fcd5301120e73485645ee3a2d15e013319f5f1d49dfeb6a20d10dab2051c2a0b4b129db613cb954c78f3679ac65f94a7ff9a88a177b183f53cc2f045b2871b
-
SSDEEP
3072:hkyrSmefi8xQRv00gDg4JVUrQrY17hJHe0KuVuPi6d+YShwaqz+UQc/uGkn3dK:hkal2i8WjgDZY9hhFxTyUOaMkN
Static task
static1
Behavioral task
behavioral1
Sample
8a181685b455937c2a60f9336e67f487_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
gozi
3195
nsyblefgg.city
m25lni11528.com
dgrover.band
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
8a181685b455937c2a60f9336e67f487_JaffaCakes118
-
Size
376KB
-
MD5
8a181685b455937c2a60f9336e67f487
-
SHA1
57d9b086f16904c9deb0b3591a1fc64cc09dc8b1
-
SHA256
55d7621989b64512ccee37bac287fb9e878952e4b158d34a700cd2c730c8b604
-
SHA512
c4fcd5301120e73485645ee3a2d15e013319f5f1d49dfeb6a20d10dab2051c2a0b4b129db613cb954c78f3679ac65f94a7ff9a88a177b183f53cc2f045b2871b
-
SSDEEP
3072:hkyrSmefi8xQRv00gDg4JVUrQrY17hJHe0KuVuPi6d+YShwaqz+UQc/uGkn3dK:hkal2i8WjgDZY9hhFxTyUOaMkN
-