General

  • Target

    29c545ba1f249f576458ac3657b6b2af_JaffaCakes118

  • Size

    2.3MB

  • MD5

    29c545ba1f249f576458ac3657b6b2af

  • SHA1

    ab2f18e51018262ed2665bc25f4fbe35964dd41e

  • SHA256

    f04f24441f43eba63d208a3c21c0430a6f47d1c1de095f110d991538a932d76d

  • SHA512

    085ca252e7cc3d754067b880caa6424d9af1618bc7f313b8fc8e83cb129b0d68a31602264298084b03b9157bdc1efda92df2ade5ef77ecd5ee1fdd8c850854a8

  • SSDEEP

    49152:IjcIy78sbMPDcikCtWOMsrQsDSjVe2ITkQ57gq99LZ6ZrmcMM:I7y78XDqCNM1s+5epeq9BZ6IcMM

Score
10/10

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 29c545ba1f249f576458ac3657b6b2af_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections