General
-
Target
a3789752b60d33ddb6e65fd517e3071a_JaffaCakes118
-
Size
25KB
-
MD5
a3789752b60d33ddb6e65fd517e3071a
-
SHA1
5712478d1eb7f645aec6770eea26146067c60e1c
-
SHA256
c5cd0a761398af69fc3f4140f741625ec3d345514ca738836f5958a94216afa8
-
SHA512
0f140b91e45d30a8d387f89ffa182f71de0fc90aaf48d0f5cc94c785df44b7971449df0c2266cd5da9938d33a1b237330224e38b7ac9f47ab1c782f172ed5e18
-
SSDEEP
768:Q8SEN0cEw0Ub16ixXSNUHsEa6XcaufPX5:RSEmcEwp15zHsEa6X9ePJ
Score
9/10
Malware Config
Signatures
-
Detected Nirsoft tools 1 IoCs
Free utilities often used by attackers which can steal passwords, product keys, etc.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
a3789752b60d33ddb6e65fd517e3071a_JaffaCakes118
-
astlog.chm
-
astlog.exe
Headers
Sections
-
out.upx
Headers
Sections
-
readme.txt