General

  • Target

    5ffa7d4900d7521b912580e7f1b2e8eb_JaffaCakes118

  • Size

    170KB

  • MD5

    5ffa7d4900d7521b912580e7f1b2e8eb

  • SHA1

    6cbb26facb9d293d0c334c939c622c5b26b060a6

  • SHA256

    de225d4884a2f55fad897ea4a8739bf3a45bf101e7e6ebd0beec119143af7255

  • SHA512

    8dd3a8ea848ebc44a8f474b843cb178dbb504ba435f2d6b8dc2116466fce207d1c29c02163d9dbd8d739354d844b226374af6353f7f661d1d15dd1bf27e9f553

  • SSDEEP

    3072:9c8Aqe95vCRaPtTBfzHeBBrF8V+wTC9TFe:9vANz5PtTBLHi5Q+wO9TFe

Score
7/10

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 5ffa7d4900d7521b912580e7f1b2e8eb_JaffaCakes118
    .tar
  • infected/File.txt
  • infected/pack[1].exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • infected/pack[2].exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • infected/zip.dll
    .dll windows:4 windows x86 arch:x86

    fdbfec85672f73d2a4d49635454936d4


    Headers

    Imports

    Exports

    Sections