FilterConnectCommunicationPort
FilterSendMessage
TMethodImplementationIntercept
__dbk_fcall_wrapper
dbkFCallWrapperAddr
General
-
Target
44c6a4e4d6b89841a172c54bb5d90526_JaffaCakes118
-
Size
8.0MB
-
MD5
44c6a4e4d6b89841a172c54bb5d90526
-
SHA1
34582adaa29c274ddc4872c11e501802472fa00d
-
SHA256
85e03b3f1caef0024f005fa6975fe828b48bbf37451d57db1dcc2e2818a89619
-
SHA512
7d111c91ec459622c07b8a86ae5a9c1d1eeffb369b6a1df86f0196f2d256eaafe94690498135a0c8cff822a95959ef3c6adc0a07522b3291cce7869975371ec1
-
SSDEEP
196608:RJgnmn8zWp3zprE2oaCfOBUWrK/PmkBXhi2TPp5Q8KUuW:RymhpjpqaCzWrgmWD5pwW
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
44c6a4e4d6b89841a172c54bb5d90526_JaffaCakes118
Headers
Exports
Sections
-
out.upx
Headers
Sections