Overview

overview

9

Static

static

9

dialupass/...ss.chm

windows7-x64

1

dialupass/...ss.chm

windows10-2004-x64

1

dialupass/...ss.exe

windows7-x64

9

dialupass/...ss.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    45bfc053253288bd0d213a864c9ce4e7_JaffaCakes118

  • Size

    45KB

  • MD5

    45bfc053253288bd0d213a864c9ce4e7

  • SHA1

    35dd9c963f1e75230387567283670aff97a7a5b0

  • SHA256

    dbd6aeaf793e9faaf1f9806535f1706de278c2fc6c7f8061042df2798392cbb1

  • SHA512

    dd3f74897b815a6d0ab1c3cb6f5680594cfb554a9126237ae9146d3f876bfd356669b8b0078d14b235a984388b04bf51cb710b18b1082194f2752444bfa8c4e7

  • SSDEEP

    768:gZaMhiYH86NjnkSv5QjHwQ5KhxHS6g6R+80ekQjd3rzPTuYa4wxY:gZaMhioTAIkQkWxMW+813X0B6

Score
9/10
upx

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 45bfc053253288bd0d213a864c9ce4e7_JaffaCakes118
    .rar
  • dialupass/Dialupass.chm
    .chm
  • dialupass/Dialupass.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • dialupass/readme.txt