Overview

overview

10

Static

static

10

e8317caac6...18.exe

windows7-x64

10

e8317caac6...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e8317caac6568f4d37d8535a1e56ad29_JaffaCakes118

  • Size

    493KB

  • MD5

    e8317caac6568f4d37d8535a1e56ad29

  • SHA1

    f0fd94999b1f177a9c356fe7d5d51ff67b57bd43

  • SHA256

    905fc6297517e940e073d09037ea044f2ba0ecf95f728abae8199bcc0ee2142d

  • SHA512

    339ba4b8ad3187845252d4397781db24e6334d5389437ca6b38132f96ea9d68651d05bb6fe6bf40a91e4398f2faaf73e5eae5d2345a747815f39bb6e946b1834

  • SSDEEP

    6144:7qqDLOObBf5tUgvk+HyxcQFcUdMOMJa1DHjzCytSi2OFbJKnblNGaN+SZxh8D5m5:2qnOO9BtqxcwdhrjzzcOlWkSZ3y5UB

Score
10/10
ratdcrat

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

    rat
  • Dcrat family
    dcrat
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e8317caac6568f4d37d8535a1e56ad29_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections