General

  • Target

    ef350462b8c62a703ae3b5c57f441e2f_JaffaCakes118

  • Size

    3.3MB

  • MD5

    ef350462b8c62a703ae3b5c57f441e2f

  • SHA1

    0cb9d5975ea285fd1b9252d366c6b6fc5f97bed6

  • SHA256

    c1bab9fd442d74ab78de0e8654aab95c5779f610d2fe82cac2f11de7741a7c62

  • SHA512

    afd28b95455b98a31ade62964fa1e0e98a89af6ed01e67251cff5bf83fd9f0c3c20debc9213bdabf90bb2ca28ef77b89de1c3283e7cb634ed69d163c4979a50f

  • SSDEEP

    98304:d63DSQzrSNbY4geiMI/457pzvHXQMesg:CDFghiMM67pzv3QM5g

Score
7/10

Malware Config

Signatures

  • Themida packer 1 IoCs

    Detects Themida, an advanced Windows software protection system.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • ef350462b8c62a703ae3b5c57f441e2f_JaffaCakes118
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections