Overview

overview

10

Static

static

10

JaffaCakes...28.exe

windows7-x64

1

JaffaCakes...28.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_516e262e423b13726fd4a6264bbf647b6b91c43f539cfa5aeb6b1705d4570728

  • Size

    4.7MB

  • MD5

    7d60def98a505006c3321abf3eeeca1a

  • SHA1

    20f8c231ed7eb5d199906d98c060fc8b98c26063

  • SHA256

    516e262e423b13726fd4a6264bbf647b6b91c43f539cfa5aeb6b1705d4570728

  • SHA512

    3a73fd122ee674ea79e676c5d526e021ef197ce324ca45b540e53a76ad8becbed9ed32c1bf1e328405dad9b24e4d33d2a8ef72491e3097dc912e3d48e17cd3e1

  • SSDEEP

    24576:AvZU70ZzHnwmPwl1r3PgS4hlZ02y+WiFQvtsvz7a1paVnP15U:D0ZbwmYHr3IS4t02y+ZFQVsvzu8l1a

Score
10/10
stealervidar

Malware Config

Extracted

Family

vidar

C2

https://CKWL1Z4MY3L2CO

https://>+< sV:MQ65%=Z)-#/U]7'"=+&6 \0%'<,3V)-*#8*T9h aw %=Z)-#/U]7'"=+&6 \0%'<,3V)-*#8*T9h aw 

Signatures

  • Vidar Stealer 1 IoCs
    stealer
  • Vidar family
    vidar
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_516e262e423b13726fd4a6264bbf647b6b91c43f539cfa5aeb6b1705d4570728
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections