Overview

overview

8

Static

static

8

f698921c0b...18.dll

windows7-x64

1

f698921c0b...18.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    f698921c0b20d6ffa9e671d61ced7eb6_JaffaCakes118

  • Size

    100KB

  • MD5

    f698921c0b20d6ffa9e671d61ced7eb6

  • SHA1

    ca7ef1fd4cb9ab73bdf585ee49336010131fdf4d

  • SHA256

    48e18b13884e055e6d884c265c1e5f16f43f65787f7293791f070941d1de6fec

  • SHA512

    1c526854e6f96087b9728bb92105b4a77d11b728004368bc93abc6ddcb8b7f2402e53924a9dc5ef520d40c585d75e6842cb3fb8c6e783a0842bd6f067d6dd18e

  • SSDEEP

    1536:j5+f02/K9/r/58z03u10RAjfxfFZTw9JAMz:N+f02/KhrwumDxfFZTw

Score
8/10
upx

Malware Config

Signatures

  • Patched UPX-packed file 1 IoCs

    Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f698921c0b20d6ffa9e671d61ced7eb6_JaffaCakes118
    .dll regsvr32 windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections