General
-
Target
a8a11324bf7136127741f39d6ff9cf88_JaffaCakes118
-
Size
269KB
-
Sample
240614-jtvvrs1elg
-
MD5
a8a11324bf7136127741f39d6ff9cf88
-
SHA1
c03e3936b8cf127eecde8c6673119c12fd88b1fc
-
SHA256
bc8c4630e4e783d2c9a7a0b405ad3d4f32cbf4dfcdbdc99610893119e31c83e5
-
SHA512
ca692a585dc8a7b7769ea9cef3e7f7d46649c3f5415de6193939fcdd100ac471bb4480f59a00061eb4881c6fa7389a2c7e6b4fe92e2f06a22f870610f3d9749d
-
SSDEEP
6144:lVfmmDgASD5W/adCxsT4/YFqBcIsBGOhN/35:lVfjDmtW/adCC4/UIsBhN/5
Static task
static1
Behavioral task
behavioral1
Sample
a8a11324bf7136127741f39d6ff9cf88_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Extracted
gozi
-
build
215165
Extracted
gozi
3151
zardinglog.com
sycingshbo.com
imminesenc.com
-
build
215165
-
dga_base_url
constitution.org/usdeclar.txt
-
dga_crc
0x4eb7d2ca
-
dga_season
10
-
dga_tlds
com
ru
org
-
exe_type
loader
-
server_id
12
Targets
-
-
Target
a8a11324bf7136127741f39d6ff9cf88_JaffaCakes118
-
Size
269KB
-
MD5
a8a11324bf7136127741f39d6ff9cf88
-
SHA1
c03e3936b8cf127eecde8c6673119c12fd88b1fc
-
SHA256
bc8c4630e4e783d2c9a7a0b405ad3d4f32cbf4dfcdbdc99610893119e31c83e5
-
SHA512
ca692a585dc8a7b7769ea9cef3e7f7d46649c3f5415de6193939fcdd100ac471bb4480f59a00061eb4881c6fa7389a2c7e6b4fe92e2f06a22f870610f3d9749d
-
SSDEEP
6144:lVfmmDgASD5W/adCxsT4/YFqBcIsBGOhN/35:lVfjDmtW/adCC4/UIsBhN/5
-