General

  • Target

    24eca305562ce8bd4f36ac89298175d6_JaffaCakes118

  • Size

    552KB

  • MD5

    24eca305562ce8bd4f36ac89298175d6

  • SHA1

    52526f5c8d2e21c7e7bd1d914bf1fbf11ed88357

  • SHA256

    384e6e90221ab95f95634da7b74e83cc7f8cff13583b50781a08fe3149273b10

  • SHA512

    dd246df54817d47bd6bdcdaaeae708c9a40f252a350f27932f45c72f8db225baef02bd771835cbf41e4609c78bd4db323eca25e670d3264f335ebe608abe40d7

  • SSDEEP

    12288:E9rD+H23OO3n/LpPxM35B9qgObN8F6qlfNUqIFzGRIF6nj1K20XdDixi8B7xDFCs:CrDF3ln/Llib0J2

Malware Config

Extracted

Family

hawkeye_reborn

Attributes
  • fields

  • name

Signatures

  • Hawkeye_reborn family
  • M00nD3v Logger payload 1 IoCs

    Detects M00nD3v Logger payload in memory.

  • M00nd3v_logger family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 24eca305562ce8bd4f36ac89298175d6_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections