General
-
Target
513789aa7df7e5e4946db3abebae67d9_JaffaCakes118
-
Size
213KB
-
Sample
240717-djf1zawcqf
-
MD5
513789aa7df7e5e4946db3abebae67d9
-
SHA1
e3c5dafdd760ce784db60f4246f6fa03f6d658d2
-
SHA256
2d9b9de594b0e492d22258446ddf99e3962cfd5024345702aa3070a5d77e4c60
-
SHA512
f471bbe3e0d7a33f28e868c563ccb526713a514c7b8afbc38817c8a7b5bda16cb7ea2303cbbf5eb72902c64ff3344eae632bc098185c99877102909f24866e95
-
SSDEEP
3072:HUaaULsZBelnhgJjGCL0pYQjI383dyUtq2sbtlroFeq+io3iIDPCiZpFip:HNaULUBelhgQCL0aVedyn5po8q+iSCp
Behavioral task
behavioral1
Sample
513789aa7df7e5e4946db3abebae67d9_JaffaCakes118.dll
Resource
win7-20240705-en
Malware Config
Extracted
gozi
1001
-
build
215840
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
exe_type
worker
-
server_id
93
Targets
-
-
Target
513789aa7df7e5e4946db3abebae67d9_JaffaCakes118
-
Size
213KB
-
MD5
513789aa7df7e5e4946db3abebae67d9
-
SHA1
e3c5dafdd760ce784db60f4246f6fa03f6d658d2
-
SHA256
2d9b9de594b0e492d22258446ddf99e3962cfd5024345702aa3070a5d77e4c60
-
SHA512
f471bbe3e0d7a33f28e868c563ccb526713a514c7b8afbc38817c8a7b5bda16cb7ea2303cbbf5eb72902c64ff3344eae632bc098185c99877102909f24866e95
-
SSDEEP
3072:HUaaULsZBelnhgJjGCL0pYQjI383dyUtq2sbtlroFeq+io3iIDPCiZpFip:HNaULUBelhgQCL0aVedyn5po8q+iSCp
-