General

  • Target

    79f7189b1e72b78fbce621bec0c5064c_JaffaCakes118

  • Size

    97KB

  • MD5

    79f7189b1e72b78fbce621bec0c5064c

  • SHA1

    acdcdd341d5dde494991b730aac663661be8f21a

  • SHA256

    cf3649fc5dfa972bde16996076531a83384e12fa4d7f101ef6eaadc111c0ca14

  • SHA512

    1020bd7cf82a929fdd3a38b9cbd4dde0c27bdde7ed5ee032739799d01e5ed78773d3352cb816aa64930024c3580219103bc36b036252a9c0187bfb02fde2a8d0

  • SSDEEP

    1536:rZZZZZZZZZZZZpXzzzzzzzzzzzzV9rXounV98hbHnAEMqqU+2bbbAV2/S2LNmHkD:rBounVyFHFMqqDL2/LgHkc2

Score
10/10

Malware Config

Signatures

  • GandCrab payload 1 IoCs
  • Gandcrab family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 79f7189b1e72b78fbce621bec0c5064c_JaffaCakes118
    .exe windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections