General
-
Target
JaffaCakes118_05c8b018adaddd23c8b89275eea1f64e6c5c421b891e4b66a94d0754bbb75a36
-
Size
308KB
-
Sample
241229-g6b73svpbw
-
MD5
7ec6f582b4740bf5665548cc7cfdb1d6
-
SHA1
4727a56a4c9e05a9db530870bb49d362e5f7875c
-
SHA256
05c8b018adaddd23c8b89275eea1f64e6c5c421b891e4b66a94d0754bbb75a36
-
SHA512
30ef1ea7e5eeac475772dfd5194e301c1310ec26aea585096668da7d34a96b921878c5f7385ea68e51ead773fc41678b699680cab38bd8f40e9d1134843ca9fa
-
SSDEEP
6144:k4PAcpgsKF925aYbv7TGuJXCmwHqhvrq1GrUyY3lH8vLrrwc/zCD6CRvWv:thyFZczTGibzsGUR3BGY4WemO
Behavioral task
behavioral1
Sample
magi9.exe
Resource
win7-20241010-en
Malware Config
Extracted
dridex
10111
104.168.155.129:443
142.4.219.173:4664
176.31.117.84:9443
Targets
-
-
Target
magi9.bin
-
Size
1.0MB
-
MD5
2276e0412317a63a2bd1985febe93cca
-
SHA1
d33658ad2ac879461d8785536e7077c05dba31fb
-
SHA256
acc12fbe12b9970c7335151b67e4dc23f38bb1eed62a52edede51ff37e76ff39
-
SHA512
419aa0f99c9c87597dbaff6fab7f387709071de66aa89dc5eae6ed11cf7efd979e6fcbe8b99831209bc4b472f525c33e5eeb2e3651524f604fc315adfc55d6c7
-
SSDEEP
6144:8WAIsOLTEcDpn9IkQFqgrHojg6aH+LCUdbCBC0+eekTdFyDPckaS:0IsOnNp1V8ojg3ICUFyvODPL
-
Dridex family
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-