General
-
Target
aad53fc73d2fe562e42cca6621ef0519_JaffaCakes118
-
Size
149KB
-
Sample
240614-vn422atakj
-
MD5
aad53fc73d2fe562e42cca6621ef0519
-
SHA1
d8ecdf827f3f7d5a8079b8b18fa3f4e0fd314128
-
SHA256
e183937ee11e2b4464caa99d45b388a032478801f602f909372f1b60c042beb9
-
SHA512
089fe80390ef239ac3c840092a1a1b78f30d84b3fb588cca0d9c202c168e58c0ed79dc6f6357d132b8a6ce1dddd430022c86ed3b3df7d619b53be59af2fd6cd6
-
SSDEEP
3072:tzaE7ZKrQMh/x8orIrUCic0PglqlsvARnj1N2El55D8ejI1AbWxS/Cau2lPX3LMB:ZaE4rQqlrIQL8Eh2EloesObWxS/TzMB
Static task
static1
Behavioral task
behavioral1
Sample
aad53fc73d2fe562e42cca6621ef0519_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Extracted
gozi
-
build
214085
Extracted
gozi
3475
google.com
gmail.com
q982yeq23.xyz
t7763jykqeiy.com
hjruu.com
-
build
214085
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
aad53fc73d2fe562e42cca6621ef0519_JaffaCakes118
-
Size
149KB
-
MD5
aad53fc73d2fe562e42cca6621ef0519
-
SHA1
d8ecdf827f3f7d5a8079b8b18fa3f4e0fd314128
-
SHA256
e183937ee11e2b4464caa99d45b388a032478801f602f909372f1b60c042beb9
-
SHA512
089fe80390ef239ac3c840092a1a1b78f30d84b3fb588cca0d9c202c168e58c0ed79dc6f6357d132b8a6ce1dddd430022c86ed3b3df7d619b53be59af2fd6cd6
-
SSDEEP
3072:tzaE7ZKrQMh/x8orIrUCic0PglqlsvARnj1N2El55D8ejI1AbWxS/Cau2lPX3LMB:ZaE4rQqlrIQL8Eh2EloesObWxS/TzMB
-