General

  • Target

    ef068302c6ebd50bfca8954353e48352_JaffaCakes118

  • Size

    3.2MB

  • MD5

    ef068302c6ebd50bfca8954353e48352

  • SHA1

    05f445e809664553c532377d788f8533048d4220

  • SHA256

    ec5d8ab2cad5f65eddcd395de00cf03ba51fcf7ca7b74960f46cab12ca31b1fd

  • SHA512

    00dc5a11d78e3436589e606f5df052c064009b4c7db6d0fbccd1911f0c46545880dbbdbba0106bf1ae5fcc7d26de3ce8991a6b83e7dc7aaf4e5e10294c529846

  • SSDEEP

    49152:Jpdt6qeB1xny9L3iXhvroCFV/ztQ86n60mCSzJBhngj089XRaJ66N8TVdfgyv:D63Fy9eX1oCFttQuhdkXf6N8P

Score
7/10

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • ef068302c6ebd50bfca8954353e48352_JaffaCakes118
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections