Overview

overview

10

Static

static

10

226c264c27...18.exe

windows7-x64

10

226c264c27...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    226c264c27963b3d4e446b65f2dd2053_JaffaCakes118

  • Size

    449KB

  • MD5

    226c264c27963b3d4e446b65f2dd2053

  • SHA1

    3cbcf2272fd55a8b9df30fa02d242bb74539afe9

  • SHA256

    5fd924f1902d4d3dd399d531ce0ee8c3710e5587437f73c57b7851cac78e84fd

  • SHA512

    4394e374a0305d4167ffb9ff0e95099d2d15bc15cf93559279229c03db2e52c7b07d0d8f73778ff8181c5c34ff91c7532f95864f4cdae6a42f54a373f13e93c2

  • SSDEEP

    3072:mxjMQVacnG3icUkYdT45/NEGI/Lc+EINkzT1diLUEuBfYcORc5wiWAor:mxjlVJnQiGP/evc2gT1Wc2

Score
10/10
upxgh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 226c264c27963b3d4e446b65f2dd2053_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections