Overview

overview

10

Static

static

10

8cc3bfa1a0...18.exe

windows7-x64

10

8cc3bfa1a0...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    8cc3bfa1a010043be981cf876c51741b_JaffaCakes118

  • Size

    2.7MB

  • MD5

    8cc3bfa1a010043be981cf876c51741b

  • SHA1

    548df5ace9a6379ad05a125f66020d0fd071ff33

  • SHA256

    b9c21b567c057723e35d51d130d17474ba8933e84364657a13bdb7debc5d49f8

  • SHA512

    54721bec2abb016cc65c1a62dd0fa8b574e1ebe0d14a4abefc88d72e0265b8509be9e4f48e1a64e844726251f5eadbf4739e25c283ce85245d929187c4ce2f91

  • SSDEEP

    24576:ssF6mZZcVKfIxTiEVc847flVC6faaQDbGV6eH81k6IbGD2JTu0GoZQDbGV6eH81p:fF6mw4gxeOw46fUbNecCCFbNecf

Score
10/10
ratupxwarzonerat

Malware Config

Signatures

  • Warzone RAT payload 1 IoCs
    rat
  • Warzonerat family
    warzonerat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 8cc3bfa1a010043be981cf876c51741b_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections