General
-
Target
9b844705ae1df6c6012708dd806ec953_JaffaCakes118
-
Size
372KB
-
Sample
240610-wess3svcpf
-
MD5
9b844705ae1df6c6012708dd806ec953
-
SHA1
9fe73e85081a3d2b0d6172afea6c121f6c7d884b
-
SHA256
699e3b175caf3f673fc0dae574c2e6a358cd2133f57c891f872bf3f00414f810
-
SHA512
7602a3cfe78bbf51b2a1a38513b60faa5f56600fa165cf643d0a10c2203cf958a6ed55e23477e81e8b0daaa4ee0c9599675173988d360abf54a2845b2f4f29cc
-
SSDEEP
6144:QfsvEug4/COMAIOVW3Uqz/HJpadR5FzrgF:QKEufaORxezE5Fz
Static task
static1
Behavioral task
behavioral1
Sample
9b844705ae1df6c6012708dd806ec953_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
gozi
-
build
214062
Extracted
gozi
3181
bm25yp.com
xiivhaaou.email
m264591jasen.city
-
build
214062
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
9b844705ae1df6c6012708dd806ec953_JaffaCakes118
-
Size
372KB
-
MD5
9b844705ae1df6c6012708dd806ec953
-
SHA1
9fe73e85081a3d2b0d6172afea6c121f6c7d884b
-
SHA256
699e3b175caf3f673fc0dae574c2e6a358cd2133f57c891f872bf3f00414f810
-
SHA512
7602a3cfe78bbf51b2a1a38513b60faa5f56600fa165cf643d0a10c2203cf958a6ed55e23477e81e8b0daaa4ee0c9599675173988d360abf54a2845b2f4f29cc
-
SSDEEP
6144:QfsvEug4/COMAIOVW3Uqz/HJpadR5FzrgF:QKEufaORxezE5Fz
-