Overview

overview

10

Static

static

10

ecbad5b7db...18.exe

windows7-x64

7

ecbad5b7db...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ecbad5b7db10eadad379f5f8362e5fb1_JaffaCakes118

  • Size

    5.3MB

  • MD5

    ecbad5b7db10eadad379f5f8362e5fb1

  • SHA1

    2e287f3ba2b3e9cf9e8604a3221bbda568d23f57

  • SHA256

    213043d13a0ac9ad1d2f99677b81b455725b0300f4521aba6b0781e0400e92d5

  • SHA512

    b43d006e27586b4541494df55870625e09ad6d4dc1297f37ae407ff663ae3207649efb72fba01eb1a167bedf9b1b3e11bfe0450b7fa0d0f38236082898dff13c

  • SSDEEP

    98304:+2nvbS3J8sUWmSJbrUELRe/QiKWzGADpbj724Ffh9JbrUELRe/Qif:1jv9d8oee/QlWzGOX9Fhjoee/Qu

Score
10/10
upxisfbgozi

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
    gozi
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ecbad5b7db10eadad379f5f8362e5fb1_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections