General
-
Target
b5c4e7b0c9e644b7b415d03430c1f29d_JaffaCakes118
-
Size
215KB
-
Sample
240616-3k4k4atejh
-
MD5
b5c4e7b0c9e644b7b415d03430c1f29d
-
SHA1
6d912438045b982b9b85e660940a87a881c66de8
-
SHA256
d85b915e0a01f89d379589bf5efaeedaaed85d134bddc1e7567d6d8cbaf04053
-
SHA512
9cc848573eecf25912ea9a6e97f564f348c3cc8954ecdb430807332fd1f6d6164ccdffb200da7858bd523122d2391cdbd2556d2422567d7a4d063f51f1830000
-
SSDEEP
3072:Rb9pXDyUKdySqVgQZt8OdcjFfSvbke/0t4mwqWB55syoNdL0t2L6BWnqR+yV:BHXDy1qVvZnOe/HEyocWGd
Static task
static1
Behavioral task
behavioral1
Sample
b5c4e7b0c9e644b7b415d03430c1f29d_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3153
biesbetiop.com
kircherche.com
toforemedi.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
b5c4e7b0c9e644b7b415d03430c1f29d_JaffaCakes118
-
Size
215KB
-
MD5
b5c4e7b0c9e644b7b415d03430c1f29d
-
SHA1
6d912438045b982b9b85e660940a87a881c66de8
-
SHA256
d85b915e0a01f89d379589bf5efaeedaaed85d134bddc1e7567d6d8cbaf04053
-
SHA512
9cc848573eecf25912ea9a6e97f564f348c3cc8954ecdb430807332fd1f6d6164ccdffb200da7858bd523122d2391cdbd2556d2422567d7a4d063f51f1830000
-
SSDEEP
3072:Rb9pXDyUKdySqVgQZt8OdcjFfSvbke/0t4mwqWB55syoNdL0t2L6BWnqR+yV:BHXDy1qVvZnOe/HEyocWGd
-