General
-
Target
a9c2a7f7f9e0ae6fc335924086b727b5_JaffaCakes118
-
Size
215KB
-
Sample
240614-p2qtns1eqh
-
MD5
a9c2a7f7f9e0ae6fc335924086b727b5
-
SHA1
8ca1f2724e54f2b7c60a9b3c300707ae2622fcf0
-
SHA256
9c4d108eedd776d5e2fe16414a034569af235ab32b575c5786391d13deb901d3
-
SHA512
158dfabfd0a188f16687834477d6e28e21298cb82f9cd3a899fc57e31d6b4c7e3d49ceb6ffc8560f84edba2991ed9f536a1ec420de3489e4d45dd34867d95007
-
SSDEEP
3072:Rb9pXDyUKdySqVgQZt8OdcjFfSvbke/0t4mwqWB55syoNdL0x2L6BWnqR+yV:BHXDy1qVvZnOe/HEyogWGd
Static task
static1
Behavioral task
behavioral1
Sample
a9c2a7f7f9e0ae6fc335924086b727b5_JaffaCakes118.exe
Resource
win7-20240611-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3153
biesbetiop.com
kircherche.com
toforemedi.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
a9c2a7f7f9e0ae6fc335924086b727b5_JaffaCakes118
-
Size
215KB
-
MD5
a9c2a7f7f9e0ae6fc335924086b727b5
-
SHA1
8ca1f2724e54f2b7c60a9b3c300707ae2622fcf0
-
SHA256
9c4d108eedd776d5e2fe16414a034569af235ab32b575c5786391d13deb901d3
-
SHA512
158dfabfd0a188f16687834477d6e28e21298cb82f9cd3a899fc57e31d6b4c7e3d49ceb6ffc8560f84edba2991ed9f536a1ec420de3489e4d45dd34867d95007
-
SSDEEP
3072:Rb9pXDyUKdySqVgQZt8OdcjFfSvbke/0t4mwqWB55syoNdL0x2L6BWnqR+yV:BHXDy1qVvZnOe/HEyogWGd
-