General

  • Target

    3096f808706ec4f2f306b06e1c2c564f_JaffaCakes118

  • Size

    45KB

  • MD5

    3096f808706ec4f2f306b06e1c2c564f

  • SHA1

    3030dd0b3fdf05b25c92509132dc28fccb751cba

  • SHA256

    19166e4871801107a4d1a262dad9fdfb3eb9b7b3e5170831efa1c7e98dfd1bd3

  • SHA512

    20dbba05978e8094556446a1a0c0847e4b6f85af68b9b3b8d03e4cd8e45fd48a339dcd94326c4d3021cd42dfc38f25c0268572d2c80dbfc3e072a3892f609370

  • SSDEEP

    768:StQR7mc9m9U8O5qv/bXcjL3GzvnMPmCexJb4t9usNtId9YmKtXIzjRbqc:SuSEm9Ut5gX0Wzvn5CS4tbtId9YmKtXo

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 3096f808706ec4f2f306b06e1c2c564f_JaffaCakes118
    .dll regsvr32 windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections