General

  • Target

    641953762ee6acdbb9fbe4160456f856_JaffaCakes118

  • Size

    86KB

  • MD5

    641953762ee6acdbb9fbe4160456f856

  • SHA1

    98bb19aa892b4ca8983418f6237f01d605464010

  • SHA256

    c92ee6d26f318a73c9dbe769819b16b0c8fd155475655c6952ec83c909174933

  • SHA512

    799a2ac1faea987e5164969845a91bc3b82051446a7060976e3abb2c5945fefb8e9ec8ed1e69b66970e20ed8ab872f07b835bc3a32f51919e3c532ec30a72ac4

  • SSDEEP

    1536:bYvynn+A2Vd66v0uB5HrvumuVoF4ajU1d+aDIrSEHeAZimdgfglupbI:8v4+AY6S0cFvucF4eAd+aDIBHRZjdzM

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 641953762ee6acdbb9fbe4160456f856_JaffaCakes118
    .dll regsvr32 windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections