Overview

overview

7

Static

static

7

4c493aa200...18.dll

windows7-x64

7

4c493aa200...18.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    4c493aa20020b54f5f15e9a83918bb64_JaffaCakes118

  • Size

    64KB

  • MD5

    4c493aa20020b54f5f15e9a83918bb64

  • SHA1

    0ffd91ae92e5c6c0cce6cfaadacbbf7bae042806

  • SHA256

    dd19db0f949398f65f06ca455cae680a26784759c92d0496ef3a56bd4e7fc1ae

  • SHA512

    bcd77369452bf83c7d47b3b492906a826e2c592c5985860d5467ea4f76540379ae6586495705f6b097b025b3ec598059bee4cb105e019f0f9433a294fbefc2ff

  • SSDEEP

    1536:qWpjGCiznLqY2yBpPWJUkOEj5qMVL5f9icuxFtjjrLc3cQW:11xiBzkO85FicV3cQW

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 4c493aa20020b54f5f15e9a83918bb64_JaffaCakes118
    .dll regsvr32 windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections