General
-
Target
8f4920968e4de43b53d82fd9e1dad8b8_JaffaCakes118
-
Size
215KB
-
Sample
240602-y2crgsdf4y
-
MD5
8f4920968e4de43b53d82fd9e1dad8b8
-
SHA1
cfcb94764426874dcd91965c41fc9ee106327907
-
SHA256
c1fa03f2da11d307c6e2dd7c906d41a4e94478442ad94ae55ff381a5b9a320fa
-
SHA512
60768faaea7dd22404d39fcf36a3805ea917fc77e38fa821043fa497e75464be3dacd805a4a9d1601f08fef3e937c51aa96190b7f8e25f383dec6c2ed5510fe1
-
SSDEEP
3072:Rb9pXDyUKdySqVgQZt8OdcjFfSvbke/0t4mwqWB55syoNdL0Y2L6BWnqR+yV:BHXDy1qVvZnOe/HEyoLWGd
Static task
static1
Behavioral task
behavioral1
Sample
8f4920968e4de43b53d82fd9e1dad8b8_JaffaCakes118.exe
Resource
win7-20240220-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3153
biesbetiop.com
kircherche.com
toforemedi.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
8f4920968e4de43b53d82fd9e1dad8b8_JaffaCakes118
-
Size
215KB
-
MD5
8f4920968e4de43b53d82fd9e1dad8b8
-
SHA1
cfcb94764426874dcd91965c41fc9ee106327907
-
SHA256
c1fa03f2da11d307c6e2dd7c906d41a4e94478442ad94ae55ff381a5b9a320fa
-
SHA512
60768faaea7dd22404d39fcf36a3805ea917fc77e38fa821043fa497e75464be3dacd805a4a9d1601f08fef3e937c51aa96190b7f8e25f383dec6c2ed5510fe1
-
SSDEEP
3072:Rb9pXDyUKdySqVgQZt8OdcjFfSvbke/0t4mwqWB55syoNdL0Y2L6BWnqR+yV:BHXDy1qVvZnOe/HEyoLWGd
-