Overview

overview

10

Static

static

10

08e6025bc3...18.exe

windows7-x64

10

08e6025bc3...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    08e6025bc3b77ada8862bf7ebd64590c_JaffaCakes118

  • Size

    8.6MB

  • MD5

    08e6025bc3b77ada8862bf7ebd64590c

  • SHA1

    252d6cc13385be7ce42b9aa6a4a40f6355808c7b

  • SHA256

    d7f20265cd68ad2e66d44dfc788a1f6dfa692dfe20680fddacc27c9332c84cdb

  • SHA512

    031b313d7b972cb1098860453ec24d37095cd30a2ab4d932c12ad6e0d6cb209a8d44da0a6b081a9192c4ae530059207361092dbaf12c6fb49d81be7936fdb9c3

  • SSDEEP

    98304:B3peTfKJlClUUsu2xfuEKslMsm11lXNhUmvj6YYdUbuN+Y0j2J8z:BZerKkUU2xf9KaYZ2rdhZ8z

Score
10/10
upxisfbgozi

Malware Config

Extracted

Family

gozi

Signatures

  • Gozi family
    gozi
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 08e6025bc3b77ada8862bf7ebd64590c_JaffaCakes118
    .exe windows:4 windows x64 arch:x64


    Headers

    Sections