Overview

overview

10

Static

static

10

JaffaCakes...cb.exe

windows7-x64

1

JaffaCakes...cb.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_55eda8ed0ef992a6a1618a99146a67993233e82c404c0cda1d9fc8d3ae7255cb

  • Size

    932KB

  • MD5

    5c09d73aa77d98778d609aab86d8b86f

  • SHA1

    c59d55352df64e4284bda978d1321ed00b346c91

  • SHA256

    55eda8ed0ef992a6a1618a99146a67993233e82c404c0cda1d9fc8d3ae7255cb

  • SHA512

    987b15b71d630f8ff9559211749bfa08f94e60faa132e30d6d90b45f490f4730c2e4835b8734ac178524ec58bbfbf7e210043e6b364ed0e80a2335d60e26bfd5

  • SSDEEP

    24576:Jl21qW5G1OwP8/KDrL6ByrSUdxDof6zeT9qwXbuFzvbsx1xgR:JQe1Nk/M/6B0SUvof0eTQwLuR4x1xg

Score
10/10
stealervidar

Malware Config

Extracted

Family

vidar

C2

https://, '\J0 >oj1,5,8T;7]S]**7X@6WF5['9&(!,>-RVS=X!/1,>oj1,5,8T;7]S]**7X@6WF5['9&(!,>-RVS=X!/1,>

https://S]**7X@6WF5['9&(!,>-RVS=X!/1,>'9&(!,>-RVS=X!/1,>

Signatures

  • Vidar Stealer 1 IoCs
    stealer
  • Vidar family
    vidar
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_55eda8ed0ef992a6a1618a99146a67993233e82c404c0cda1d9fc8d3ae7255cb
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections