General
-
Target
a4db77d838edb48296656263e4195d6a_JaffaCakes118
-
Size
203KB
-
Sample
240613-lgvqcasgqh
-
MD5
a4db77d838edb48296656263e4195d6a
-
SHA1
a83f759e9d47b798a3b35f0b12340b9c1d215430
-
SHA256
928ed10619e31e294434cb2d95f8e0ade1fa830cf60357fba27de3fc969ff522
-
SHA512
68e835495caf4d749637e0aa74c5b1cc6991d9c88159742b928e1673268a17b2a7c16ceb47b88c881a202bab2370a88e7a9a612f16177cb6adb901b005bb2616
-
SSDEEP
3072:9Hji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:9Ldp4uPZzGonqXGXh0bluBc4GZ5
Static task
static1
Behavioral task
behavioral1
Sample
a4db77d838edb48296656263e4195d6a_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3162
menehleibe.com
liemuteste.com
thulligend.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
a4db77d838edb48296656263e4195d6a_JaffaCakes118
-
Size
203KB
-
MD5
a4db77d838edb48296656263e4195d6a
-
SHA1
a83f759e9d47b798a3b35f0b12340b9c1d215430
-
SHA256
928ed10619e31e294434cb2d95f8e0ade1fa830cf60357fba27de3fc969ff522
-
SHA512
68e835495caf4d749637e0aa74c5b1cc6991d9c88159742b928e1673268a17b2a7c16ceb47b88c881a202bab2370a88e7a9a612f16177cb6adb901b005bb2616
-
SSDEEP
3072:9Hji2dQ6v4uPXDNUj4jKBonzmLXlYVRLh0epEEZqkFBc4+uTqN76o:9Ldp4uPZzGonqXGXh0bluBc4GZ5
-