Overview

overview

10

Static

static

10

355e7899e9...18.exe

windows7-x64

10

355e7899e9...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    355e7899e9b1c032865ce0e2b98a257a_JaffaCakes118

  • Size

    204KB

  • MD5

    355e7899e9b1c032865ce0e2b98a257a

  • SHA1

    cb96abf6a6172feb9e95fb08981a44332cd06ea5

  • SHA256

    a207ef339a7b12a825bd9f5fc6349e6c1ec130dbcb48d663d0d1fc91a534aa0d

  • SHA512

    18bb8f91153fcac63881e189f0e40301f49b21018b66b6b560e80fd8b843c27610bf59bfbfb804cea98b07a32f4bc7cf31c562589307ba6f938531addc9e9d21

  • SSDEEP

    3072:sr85C3oFiWjmfb+HP+rnRfUqW1Am5T+8WCdHwJK3Bc:k934jmfCHWtUP1Am5T+LCNwE3G

Score
10/10
neshtasodinokibi

Malware Config

Signatures

  • Detect Neshta payload 1 IoCs
  • Neshta family
    neshta
  • Sodinokibi family
    sodinokibi
  • Sodinokibi/Revil sample 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 355e7899e9b1c032865ce0e2b98a257a_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections