Overview

overview

9

Static

static

9

616e193048...18.exe

windows7-x64

9

616e193048...18.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    616e1930486a7c86252e60aec965934d_JaffaCakes118

  • Size

    296KB

  • MD5

    616e1930486a7c86252e60aec965934d

  • SHA1

    4e783573d3c01b7668c0eb42f0e946076c75bc43

  • SHA256

    1c05df2cfddfbba949dcdb01941b50ca4c781cd000caac7d123e66f6beb80e85

  • SHA512

    8e172f4570807a45bf00613d8cd5ca0be4bd7d8ef4dafb396a0fb6defe47f118b7d958bc31802b6162fce59fcbcd88c976eac64535176894dd4476b93150cd70

  • SSDEEP

    6144:9K/JskNAVNecqTDVqIIFYINIQMIq1/QnhvG:YykqVNecqTDVkuLtQnRG

Score
9/10

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • NirSoft MailPassView 1 IoCs

    Password recovery tool for various email clients

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 616e1930486a7c86252e60aec965934d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    3a5e6f09d2bb42fa6e465ffd2f81f276


    Headers

    Imports

    Sections