General

  • Target

    637c47fcec9758a479436a2d107322df_JaffaCakes118

  • Size

    297KB

  • MD5

    637c47fcec9758a479436a2d107322df

  • SHA1

    9c5820d6d8e0001d4f10be3615fcba2241fd78e8

  • SHA256

    9d8fbe4d9e193e5fa6649009adf0730c90f108e8dc275b84eb809dfbe45c4117

  • SHA512

    0f4712581c730b60112af568cff89899591fef76226216112b50265692c6a2fefae8077107647ff51b9d9bc235e6a72818d9e0b4aa6fbba8a06ab62da82a370d

  • SSDEEP

    6144:5fy/NsQlCZjMtaF75KKpvE+XgeME+ZVg+ynhEGrul9Pn372R9TXOvv4pNw0R0:5fYNnlUWC1KUVMS+suDPnLiT+0fO

Score
10/10

Malware Config

Signatures

  • ModiLoader Second Stage 1 IoCs
  • Modiloader family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 637c47fcec9758a479436a2d107322df_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections