General
-
Target
7298dc47d1a0bc1844798c9d424e6611_JaffaCakes118
-
Size
35KB
-
MD5
7298dc47d1a0bc1844798c9d424e6611
-
SHA1
284034f87a691bff83f90ea6dbedd103ecc9bfb8
-
SHA256
359dbad8a10bee3f9ac5983d1bd834245b6d61945835cdb796df8a14496a371d
-
SHA512
c38d249d5b2b70e2e3a7d1ead4f02d8771a0c08a47a2b279efd3d994cbccb2e723e452a995eab31275ec179859ed51a025e24854644064d8516ed1beaaf4bd05
-
SSDEEP
768:/CYEIKnKNysPyR5jS9uGBv597Vqdm6ku1VGtXTiT2t5g5iei6Hi:/Dvc/RM9u2R97Vcm6vWtXTiof
Score
9/10
Malware Config
Signatures
-
Detected Nirsoft tools 1 IoCs
Free utilities often used by attackers which can steal passwords, product keys, etc.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
7298dc47d1a0bc1844798c9d424e6611_JaffaCakes118
-
HA_IEHistoryView 1.60/iehv.exe
Headers
Sections
-
out.upx
Headers
Sections
-
HA_IEHistoryView 1.60/汉化说明.txt