Overview

overview

10

Static

static

10

4d8c80f830...18.exe

windows7-x64

10

4d8c80f830...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    4d8c80f8309f0e351228870fca40561e_JaffaCakes118

  • Size

    1.0MB

  • MD5

    4d8c80f8309f0e351228870fca40561e

  • SHA1

    64079a8abe443c44a2a1fd9fba6f1db2629563de

  • SHA256

    3f1046aa82a5fdbc777adc7c0217a1af19ec75db29fea411a89457621cf49d15

  • SHA512

    1f62b064ddbfbd2b409453db19ccb4ef37624697f795d0e7bb6023294f581b1f17c8cb033f9b131fb63295a32e22527798746aed139e7b2210ae21689ba54eec

  • SSDEEP

    12288:7+Tra4Za0hxc5ykC3b7L3UmTwMIsAt2L0RAjCZCR8oS:qTPpxcpwzPSVAL0R2CZC

Score
10/10
upxmetasploit

Malware Config

Extracted

Family

metasploit

Version

encoder/call4_dword_xor

Signatures

  • Metasploit family
    metasploit
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4d8c80f8309f0e351228870fca40561e_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections