Overview

overview

10

Static

static

10

1536818936...18.exe

windows7-x64

10

1536818936...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    153681893609807553891d7a33a81ee5_JaffaCakes118

  • Size

    2.7MB

  • MD5

    153681893609807553891d7a33a81ee5

  • SHA1

    c20eb7d70fee448c7a0cca6c7f78214d757f8dd5

  • SHA256

    ed93c819de29457558bc5fc25512afaf62c9113cb2bbe14a5eb55ae947136b1b

  • SHA512

    3c52228fdd34675b49c954ebad6eff3ac39273e9762205f0d08a6dbaee80e2fc2b80c7e0c7eca2447c708850a15dd4fd82d657f75403f72bef5d50ecf3635455

  • SSDEEP

    24576:ssF6mZZcVKfIxTiEVc847flVC6faaQDbGV6eH81k6IbGD2JTu0GoZQDbGV6eH819:fF6mw4gxeOw46fUbNecCCFbNec7

Score
10/10
ratupxwarzonerat

Malware Config

Signatures

  • Warzone RAT payload 1 IoCs
    rat
  • Warzonerat family
    warzonerat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 153681893609807553891d7a33a81ee5_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections