General

  • Target

    2db05a728f56c8c5063559c5980f8f62_JaffaCakes118

  • Size

    27KB

  • Sample

    240708-y7f14azara

  • MD5

    2db05a728f56c8c5063559c5980f8f62

  • SHA1

    740cc0209c89c330724a238ba4e9a12012a7ce3a

  • SHA256

    f06e4b33efffce919d0d3f01eb014362a15ecd088c10faf3d1fcbf9df8dc820e

  • SHA512

    be9a68009a2d107eef10e2902ebdff659f2c15ccf0dd4b192fa15a934cfa8eb7d59b87b12ee220f9911d374bbe6ebb1b929ce773d09bc78836db7e86ff6b0ec6

  • SSDEEP

    384:k1GVhNN6ISrC4CFHzmjT7t2hIsr9qN7Mb3:k1dDMzCTert

Score
10/10

Malware Config

Extracted

Family

gozi

Targets

    • Target

      2db05a728f56c8c5063559c5980f8f62_JaffaCakes118

    • Size

      27KB

    • MD5

      2db05a728f56c8c5063559c5980f8f62

    • SHA1

      740cc0209c89c330724a238ba4e9a12012a7ce3a

    • SHA256

      f06e4b33efffce919d0d3f01eb014362a15ecd088c10faf3d1fcbf9df8dc820e

    • SHA512

      be9a68009a2d107eef10e2902ebdff659f2c15ccf0dd4b192fa15a934cfa8eb7d59b87b12ee220f9911d374bbe6ebb1b929ce773d09bc78836db7e86ff6b0ec6

    • SSDEEP

      384:k1GVhNN6ISrC4CFHzmjT7t2hIsr9qN7Mb3:k1dDMzCTert

    Score
    5/10
    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks