General

  • Target

    9d4454e5dddbd45f929f2c2e2e9ec5bc_JaffaCakes118

  • Size

    233KB

  • MD5

    9d4454e5dddbd45f929f2c2e2e9ec5bc

  • SHA1

    036faab45c38b5e4331a8193fce18f4de60c9dac

  • SHA256

    fa91bab089c7939690a419f0c510e10d4cb225ad1b72cef7375a752c7d5e3542

  • SHA512

    bf2b70798be9ce04eb02d153ce6ae487a201dcd076d635b510a388883d9a64fc479eb65abce9cbe6fd38e09f784c0187ab7acccb8261097e3b2c8448d5ab094a

  • SSDEEP

    6144:0bYMlPgfq2f29LqZPZvGo91bUPUzYJjzB/XFqULS7CiTwhCYfMkvWU:0bYMlT2f2s7Oo9WZ3S7GoYh

Score
10/10

Malware Config

Signatures

  • Detects Strela Stealer payload 1 IoCs
  • Strela family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 9d4454e5dddbd45f929f2c2e2e9ec5bc_JaffaCakes118
    .rar
  • Juisreader.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 新云软件.url
    .url