Extracted

• • Target

    95a6237dc315a939e5f23ae81269d927_JaffaCakes118

  • Size

    143KB

  • MD5

    95a6237dc315a939e5f23ae81269d927

  • SHA1

    47abf9b7d34b3ca53506046056e027e706761a2e

  • SHA256

    f8fa64938187bac9d6557738d63a6521576ad4885ed1deaa3c1ba6e33acbfe2a

  • SHA512

    8d3450971038d587c2ed02de598e63850ec5192041bbce0cb6a1162921c14edc68cfe2852c2c3719806e00ae39e4a7705991ee93f15424ca668619c1788dc9c4

  • SSDEEP

    3072:MbQYNifzxMuNy8V8HfQAsH5s6INJOwO3t:HYNirXy8Msq17OwO9

  Score

  10^/10

  latentbotdiscoverypersistencetrojan

  • LatentBot

    Modular trojan written in Delphi which has been in-the-wild since 2013.

    trojanlatentbot

  • Adds Run key to start application

    persistence

  • Suspicious use of SetThreadContext

  behavioral1behavioral2