Overview

overview

7

Static

static

7

aa164214ff...18.exe

windows7-x64

7

aa164214ff...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aa164214ff5f6af2f4e28b6aa6d25e1b_JaffaCakes118

  • Size

    5.8MB

  • MD5

    aa164214ff5f6af2f4e28b6aa6d25e1b

  • SHA1

    7da12991c2c96006baaaf6fd0fed7e3ee7aa91e0

  • SHA256

    67118bd39edf4136eea323c53d9381ffb2878c4d1fe875c8a969f820d07d79a6

  • SHA512

    b20f5aa114c8c972e7465de2c659fa30aabeb307806cc4517101a0f7b6ac7be9e4a33217f3b80c02b6f7d121f897deb3a97987eea6527e1e92d4b884dcce6490

  • SSDEEP

    98304:NMp5EBCoIyyx2JJDNC/LyBC2/54F4AWUi91BiQzFuoUINnfK170otkKZkLScOFjT:NMpSBCoIbx27DNC+54Fhy1Lzopua70W+

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • aa164214ff5f6af2f4e28b6aa6d25e1b_JaffaCakes118
    .exe windows:5 windows x64 arch:x64

    a08a23bfb67acb10b0fe83223baee4e4


    Headers

    Imports

    Sections