General

  • Target

    5b31734b6989bba9751ed3fb9648bbff_JaffaCakes118

  • Size

    53KB

  • MD5

    5b31734b6989bba9751ed3fb9648bbff

  • SHA1

    172d74d32f37618c0728872f5677175705cf11f7

  • SHA256

    bc13ea335b7a85a49c2604757ded9f351c2cf018fd2b31c8f15fa6791d7d3959

  • SHA512

    b4a6e9a82994fd72a40e22c3b1e31211b41103a28e2746ca3df00e7e63a5ab8fcb8b718f70cf8af556dee79734d2e927e8949e95fb60eb604549f6ef62a30ae9

  • SSDEEP

    768:mXp1yhUOJcMGelutnaBHVka17rMeBgkePumbKe/6Z61y7j+I1q:mZ0iNelutnaUa17oeBgkglDny7Jq

Score
8/10
upx

Malware Config

Signatures

  • Patched UPX-packed file 1 IoCs

    Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5b31734b6989bba9751ed3fb9648bbff_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections