General
-
Target
82421b9c019182a6d12d40d7fd51fb97_JaffaCakes118
-
Size
54KB
-
MD5
82421b9c019182a6d12d40d7fd51fb97
-
SHA1
4ce27f2ba8db2dd235f4972709bc5048358cb90e
-
SHA256
913796114bf62cdce1342d80cc560df8715950596897f6ef8d0a5640e97002eb
-
SHA512
b79f8c014e15366a6c048d79be31d9057aad3456a064e78f1e960d39e42e9d358cfdb3c6a1cd381081c757796ccc79b7dbe9ea166f887e011b8ef0f88d208f1b
-
SSDEEP
768:h//HC8JJ0qVhPstudJuhZrPNcp+L80sPodCiNcO/VfQnABRZdNmU4t82TDOueytY:h//DKwh0tg8gLYBNMAPpA8yqytj17HTy
Score
9/10
Malware Config
Signatures
-
Detected Nirsoft tools 1 IoCs
Free utilities often used by attackers which can steal passwords, product keys, etc.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
82421b9c019182a6d12d40d7fd51fb97_JaffaCakes118
-
MozillaCacheView.chm
-
MozillaCacheView.exe
Headers
Sections
-
out.upx
Headers
Sections
-
readme.txt
-
新云软件.url