General

  • Target

    ac3cc41a13c727f585332b9abfc328ec_JaffaCakes118

  • Size

    422KB

  • MD5

    ac3cc41a13c727f585332b9abfc328ec

  • SHA1

    7f1b1c03c0dff0c5660e459078f8d914bb54e7f4

  • SHA256

    ec9cf2edf625d23d20c20c7720c4a0220ee45867aaff007cd4ea9d219f28e5a7

  • SHA512

    a26bb93f25c61e4e466d27829bfb19a2e6707bf71fa50d5e45aa3609b3d9aabf8c3ecba2b0659318741737895cb438de3d2e6e918475d28559eb333a50c2a03c

  • SSDEEP

    12288:qoxrsg5JW558F9zmovF+ihZTsi69UK9///WRRK2Rb:qO5I8Flbn/6KKl/CRb

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • ac3cc41a13c727f585332b9abfc328ec_JaffaCakes118
    .rar
  • Readme-说明.htm
    .html
  • kinguard.dll
    .dll windows:4 windows x86 arch:x86

    c9ad6a8d50872372c4ffb051321352ae


    Headers

    Imports

    Exports

    Sections

  • tlcsq.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections