General

  • Target

    9e1220cdfd616c53366f4f82f9437b64_JaffaCakes118

  • Size

    315KB

  • MD5

    9e1220cdfd616c53366f4f82f9437b64

  • SHA1

    88773c1a1bc9a6ec77d4d87e23dab6e77f399d34

  • SHA256

    a848b899b3232fea4f647273f019d1b74b00b4289fcb216bcc5e00148703e2fc

  • SHA512

    86b2c602dba8c31a7a181db1fcc91f75061141845d565cf7866ecf1f7fce276f8165bb491da65a8f1bbabbeb793645bbeb8bb1b55e33d2f6de2bd48e5b7e7fbb

  • SSDEEP

    6144:CVqXq0AIf2QsBMpa1zFOCbbJLxc9fjCoRTVF+Q8UcG3NX/n:CVqxAIf2QslFNbJVc9bCmJFNFX/n

Score
7/10

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 9e1220cdfd616c53366f4f82f9437b64_JaffaCakes118
    .zip
  • BMW EWS Editor/EWS Editor.exe
    .exe windows:4 windows x86 arch:x86

    0b0be73ed07c8c2732f0a85e4b889085


    Headers

    Imports

    Sections

  • BMW EWS Editor/ftd2xx.dll
    .dll windows:4 windows x86 arch:x86

    b15f50e3f2711e0feb9b6d0b6f0258b5


    Headers

    Imports

    Exports

    Sections