Overview

overview

10

Static

static

10

0821d568d1...18.exe

windows7-x64

10

0821d568d1...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0821d568d16221c5a6bc7a9379f0fd4a_JaffaCakes118

  • Size

    1.2MB

  • MD5

    0821d568d16221c5a6bc7a9379f0fd4a

  • SHA1

    cf3030cdf76e38bc9120192d574041d6ec516b48

  • SHA256

    638dbc14f654e02475c375cdab05884cc24d546830cf1dd567c0b2461b3a15e3

  • SHA512

    055870425b7a20c2b6c1987a4a3c03acd76d6b7121bdda633b7709a88f1b68cc4fb00af9a080b35df080c9cc98fa547d7411ad55abdb325c2709ca8633cee242

  • SSDEEP

    12288:dQsN51wwR/Hr+TcfFCrWcOKv5WqLezM5sLbBoSCIrdWHQ:dQ21wwR/Hr+TcfFCvOY5kzM5sLbjB

Score
10/10
upxgh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 0821d568d16221c5a6bc7a9379f0fd4a_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections