General

  • Target

    25be06ba7d7f200a103b22d725d976b0_JaffaCakes118

  • Size

    108KB

  • MD5

    25be06ba7d7f200a103b22d725d976b0

  • SHA1

    7358d7f69bafdf9a98c4d6c95d97b44b987d706e

  • SHA256

    cb53051b195c1c73e0e2f7098f31cf2d9537f017f746df00cd9f8c9173c7b03c

  • SHA512

    ed8d589dc4969ba11d1a9cc13c8c15f60a8e0890b9c34507f7b4fa07beccc189ee1bf35e47d596c3aa97b8478fd73f3202144a4f07f05fd3bf6f60ae56e8d390

  • SSDEEP

    3072:IgXdZt9P6D3XJbC6+XxX5VstrjMEiReqrOxtGtoNbUXPPR:Ie3446+h/OM3ReqrOxYuQB

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • 25be06ba7d7f200a103b22d725d976b0_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $TEMP/test.dat
  • $TEMP/test.dll
    .dll windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:5 windows x86 arch:x86


    Headers

    Sections