Overview

overview

3

Static

static

3

Fake Tool ....6.exe

windows7-x64

3

Fake Tool ....6.exe

windows10-2004-x64

3

Fake Tool ...ng.exe

windows7-x64

3

Fake Tool ...ng.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    a4517234e6b74c52187b368bf13258f4_JaffaCakes118

  • Size

    249KB

  • MD5

    a4517234e6b74c52187b368bf13258f4

  • SHA1

    7068a4c6423352d73ba847ac9275c759e801cf27

  • SHA256

    95d15c9b5fce2bb7053330b98ffa53a97b4ddde517303c6c0f696b70a929b552

  • SHA512

    f94905eaab2e0de19995dfb82f35dc5716496aec95bd87e777232fffd1b5906a4f07a83103ff23b943421a381d41de495e4020570f421a833edc28501b458ee9

  • SSDEEP

    6144:RAX7S7s+LJPW6GKKnk5KSC+V6FvaUYhqQraM:OidTKKgvgj+M

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • a4517234e6b74c52187b368bf13258f4_JaffaCakes118
    .rar
  • Fake Tool 1.6/FakeTool1.6.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • Fake Tool 1.6/Werbung.exe
    .exe windows:4 windows x86 arch:x86

    5c4d602843f54570889588b32f7af650


    Headers

    Imports

    Sections

  • Fake Tool 1.6/nnamen.ftl
  • Fake Tool 1.6/ort-ch.ftl
  • Fake Tool 1.6/ort-de.ftl
  • Fake Tool 1.6/ort-fr.ftl
  • Fake Tool 1.6/strasse.ftl
  • Fake Tool 1.6/vnamen.ftl