Overview

overview

10

Static

static

10

465bc7baf3...18.exe

windows7-x64

10

465bc7baf3...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    465bc7baf33689d06e5952995015c4b0_JaffaCakes118

  • Size

    955KB

  • MD5

    465bc7baf33689d06e5952995015c4b0

  • SHA1

    3b0d01405f19a9560838b667c6e109ebf8f7e62c

  • SHA256

    0e693ccc07fbaa8ca9baa05d6d1780a6d75748cbca86612c157d89e3f327d24e

  • SHA512

    75bd855f5e79f620e61f8ff6192f7cdb418171dda8c7efabc772808bf32d7d59275b7164b4e78af65cf2b78961f34eb30153e8e1f450322e42277ddc204a82b3

  • SSDEEP

    12288:SzQr+1kZVQQxfnr+TK7r79/JDXWE18qRzfG4M5kCj:uQKQVQQxfnr+TK7r79/JD71PRi4M5kCj

Score
10/10
upxgh0strat

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
    gh0strat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 465bc7baf33689d06e5952995015c4b0_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections