General

  • Target

    a1c7161d9cbc064b38d64bcfe64c6036_JaffaCakes118

  • Size

    46KB

  • MD5

    a1c7161d9cbc064b38d64bcfe64c6036

  • SHA1

    e09a3f957f231ba734f41a52cd3b4c4113c89f8e

  • SHA256

    1eaee53b63d94cb321f661d065113efd4cb382e38aff90a17b735dbd9ae63baa

  • SHA512

    052b5adf858e44e76ff3a515921b8943fcfc26d18d4e87193c000dacc36ea03720343ac4cf7e2bf58316cd10d15fb4581b4fcc53ae1d177c24aae4bbcddba52c

  • SSDEEP

    768:h4wO7XBz+5Qm3W0tYdrQZHV4EWuWEUOg4jjfS3XJcCiq9N0HqgzHSNOYxsIeX+Yx:6LXB65939tY6HBg4sXJcNS8qcy45uWj

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • a1c7161d9cbc064b38d64bcfe64c6036_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/NSISdl.dll
    .dll windows:4 windows x86 arch:x86

    9cce555dd3ff1b6c7dc92d64c794c51a


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsArray.dll
    .dll windows:6 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:6 windows x86 arch:x86


    Headers

    Sections