Overview

overview

10

Static

static

10

fb26030b51...18.exe

windows7-x64

7

fb26030b51...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    fb26030b510e34b87d21fa1db5faab74_JaffaCakes118

  • Size

    11.7MB

  • MD5

    fb26030b510e34b87d21fa1db5faab74

  • SHA1

    695cb2f941a42cdb02dabb1fbe55e314e3380996

  • SHA256

    16a434154df62d4d399befd2dbcb4371aee542ed034de77edce2ee6570d4bdab

  • SHA512

    4d90d4d1f72242d251463dac6308b326dc1e7665dffa08151e5214e579900d5c99e14df3aa85a35091774bbbf433f0b1e99d225d3ef885a882533ac48b4d238b

  • SSDEEP

    196608:V4yNIY51bWCcXf3o2WCfuuoWCcXf3o2WC:egI8+ffZuuo+ff

Score
10/10
upxisfbgozi

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
    gozi
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • fb26030b510e34b87d21fa1db5faab74_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections