General
-
Target
08e5352a2416bd32a1c07f2d6c2f11fa_JaffaCakes118
-
Size
105KB
-
Sample
240624-q6be8avgjc
-
MD5
08e5352a2416bd32a1c07f2d6c2f11fa
-
SHA1
75a8054ee4939564fb90ccc654f0cfa9afe062c7
-
SHA256
aceca16c33ae8a73b1fd7699a8317d70d164df9744cb7e494834b9c1e457a768
-
SHA512
db1268b7f11726d9fae2d143757bec5c1497710cc97f3561cdf6dbd5cdd97aef7da2f1fbbbf6819b520e01a85e83775817d051812bcfcf5850dd534532ffc2af
-
SSDEEP
1536:2FmExUd6hs8reTaBElUWasAYHx0OyZ206LM9YZALMwVw:2nohCWasXxb0T9YZ3we
Behavioral task
behavioral1
Sample
08e5352a2416bd32a1c07f2d6c2f11fa_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
08e5352a2416bd32a1c07f2d6c2f11fa_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Extracted
gozi
Targets
-
-
Target
08e5352a2416bd32a1c07f2d6c2f11fa_JaffaCakes118
-
Size
105KB
-
MD5
08e5352a2416bd32a1c07f2d6c2f11fa
-
SHA1
75a8054ee4939564fb90ccc654f0cfa9afe062c7
-
SHA256
aceca16c33ae8a73b1fd7699a8317d70d164df9744cb7e494834b9c1e457a768
-
SHA512
db1268b7f11726d9fae2d143757bec5c1497710cc97f3561cdf6dbd5cdd97aef7da2f1fbbbf6819b520e01a85e83775817d051812bcfcf5850dd534532ffc2af
-
SSDEEP
1536:2FmExUd6hs8reTaBElUWasAYHx0OyZ206LM9YZALMwVw:2nohCWasXxb0T9YZ3we
Score8/10-
Server Software Component: Terminal Services DLL
-
Loads dropped DLL
-
Drops file in System32 directory
-