Overview

overview

10

Static

static

10

e80f7cd964...18.exe

windows7-x64

10

e80f7cd964...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e80f7cd96415137a2700638d1cdbf74f_JaffaCakes118

  • Size

    1.0MB

  • MD5

    e80f7cd96415137a2700638d1cdbf74f

  • SHA1

    35ef41deaaa1c2fc66df2a4fa657d4ebaf6b5129

  • SHA256

    e787ad6ebf572eff0d6c87d8ce10105b57367179d71be8a598fa3a3c607f5ffd

  • SHA512

    bd7368faba9b0d38e4781d185a93e2be4eb535f5de02a69981cfe1ae44175c9cce6f3e42ef9f5febc7dd9fc60d1e66122805e3ab3f8ab3b924ec5a487cff383e

  • SSDEEP

    24576:m9pRceBJ1t1qrxIBSD4zPpfx5uVwVWTq:qBBnmx+S0t5T

Score
10/10
trojanbazaloader

Malware Config

Signatures

  • Bazaloader family
    bazaloader
  • Detects BazaLoader malware 1 IoCs

    BazaLoader is a trojan that transmits logs to the Command and Control (C2) server, encoding them in BASE64 format through GET requests - JaffaCakes118.

    trojan
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e80f7cd96415137a2700638d1cdbf74f_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections