Overview

overview

8

Static

static

7

KMS2016.exe

windows7-x64

7

KMS2016.exe

windows10-2004-x64

7

卸载服务.bat

windows7-x64

8

卸载服务.bat

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    8dab2ffbf7f6726e2b9047b57644096d_JaffaCakes118

  • Size

    3.5MB

  • MD5

    8dab2ffbf7f6726e2b9047b57644096d

  • SHA1

    4052169f8215869df2b2108b294a52938582e7ab

  • SHA256

    dded4865c567b25ccd46849692fd3f19ba06060af95ade65c73a4051e345ba61

  • SHA512

    8358c2b705d9f4f0cfd996480e6a2561702e3e411c246dc2199632b2ec6df76528da711b3f1458149246bc96f66a72d0c432017baa52849f9d5ba60af381fbba

  • SSDEEP

    98304:va01JkvzKDNjD/flkAc1Pv0hbB0WlEXRYq4hLv:vagkuD1kAaPchbB0WlEhEhLv

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 8dab2ffbf7f6726e2b9047b57644096d_JaffaCakes118
    .zip
  • KMS2016.exe
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • 使用说明.txt
  • 卸载服务.bat
    .bat .vbs