General

  • Target

    550112f9f98e8b7e7ff55b3cbb985c68_JaffaCakes118

  • Size

    883KB

  • MD5

    550112f9f98e8b7e7ff55b3cbb985c68

  • SHA1

    ec16f0fc5958727d329344f76a2e16a62dd02121

  • SHA256

    e444b4058d7ce00244581868383d14b7e159c27b9b65dcc3751fb56a69796d40

  • SHA512

    e72af15cffceed9136ecfb5ce2171b55277ab71e7052d19bd5c934fa6c88d3e7e1f27e1458904ce0332e6a8afd01d0ff74568582bbb62d430bb2f87f0b0bc2c5

  • SSDEEP

    24576:Z1kVxJ/0aw8LwW1JQPDI8iqGkEmZsK6WQilBk4m89WNN:Z1k9U8ssEi8vyWQgDmSeN

Score
10/10

Malware Config

Signatures

  • Blackmoon family
  • Detect Blackmoon payload 1 IoCs
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 550112f9f98e8b7e7ff55b3cbb985c68_JaffaCakes118
    .rar
  • 七喜下载站更多精品纯净绿色软件.htm
    .html .js polyglot
  • 章鱼搜索破解版/!)使用必读.txt
  • 章鱼搜索破解版/unins000.dat
  • 章鱼搜索破解版/uninstall.ico
  • 章鱼搜索破解版/unpacked.dll
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • 章鱼搜索破解版/七喜下载站更多精品纯净绿色软件.htm
    .html .js polyglot
  • 章鱼搜索破解版/章鱼搜索破解版.exe
    .exe windows:4 windows x86 arch:x86

    68bc82b81e3b3599937366d180fd4185


    Headers

    Imports

    Sections