General

  • Target

    40ccfa9cce6ee03a2e76c5b43614737a_JaffaCakes118

  • Size

    118KB

  • MD5

    40ccfa9cce6ee03a2e76c5b43614737a

  • SHA1

    1d994dd4315e7051042a993ab62680a7e00b3aec

  • SHA256

    452b6a4906560e02175a94c1baa36ae713863f7fb1dfbd6d21d768d9af78d312

  • SHA512

    87e199cf76b84ce367baecc8aeaff069176b82ee22637e750c9c9cafa622d73af63aad8abe64c3fd2ef64bd198ff4004d4901c56887d06d3471bb936b4c85e81

  • SSDEEP

    3072:EdowCX6jXmo6NOvERhyXKfcou9w9E2K4bout6:sg6uGER4XicoX95oS

Score
9/10
upx

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • NirSoft MailPassView 1 IoCs

    Password recovery tool for various email clients

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 40ccfa9cce6ee03a2e76c5b43614737a_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections