Overview

overview

8

Static

static

7

6a524b4063...18.exe

windows7-x64

8

6a524b4063...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    6a524b40633834598154d8a8852a3622_JaffaCakes118

  • Size

    475KB

  • MD5

    6a524b40633834598154d8a8852a3622

  • SHA1

    85380e42acdf1d4b542c1e0461ccc5ccca483f70

  • SHA256

    98c261312b59381ba4a96f6ad34e79c04019b2307c6a682c3c4bbd66a2cef277

  • SHA512

    78c7eab1daa91bbddc10f2a6643bd3a5d05c229fcc48db9ef1e3fa0b8eef77f8fc1e10e81d51f7101d515c67d741f3ea3031040d30146bb9d2fa5194357de7c9

  • SSDEEP

    12288:61ApYOKSh6CnTvycfxyVCYjk2exjgxWS:61uKPCnnxyro2j/

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6a524b40633834598154d8a8852a3622_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    465d26967af1346f094e36253f9c8f2f


    Headers

    Imports

    Sections