Overview

overview

7

Static

static

7

efcw680.exe

windows7-x64

7

efcw680.exe

windows10-2004-x64

7

新云软件.url

windows7-x64

1

新云软件.url

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f794a7a624f63aa8d12bb38e20c864ce_JaffaCakes118

  • Size

    5.5MB

  • MD5

    f794a7a624f63aa8d12bb38e20c864ce

  • SHA1

    d04f4204f7e266fbcb2ef7eb79df26989440740a

  • SHA256

    4af21202e1ff48c3c17b45a067f991a0dc6a2a397b76ac33cb26baa814c21cb0

  • SHA512

    8f03fdcf0759e23c0099eb47e6a4e9de71f4229ba020c010ef0c71301286a1b47f99c2dec851338edd52145a4c8ec2e250e72ad5ff879d233360dad3ecce37dd

  • SSDEEP

    98304:N954lhBDHJ002amGa0P4MmUzNQTVw4dUC1t5ugityeQtoyW1EQcAHEi:azNHJXtx5zNQ5pUC1Wg/eQtoZZL

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • f794a7a624f63aa8d12bb38e20c864ce_JaffaCakes118
    .rar
  • efcw680.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 新云软件.url
    .url