Overview

overview

10

Static

static

10

a5c084c99f...18.exe

windows7-x64

10

a5c084c99f...18.exe

windows10-2004-x64

10

Sharing

Copy URL Twitter E-mail

General

  • Target

    a5c084c99f1bef233f1dad55a4c92cef_JaffaCakes118

  • Size

    2.7MB

  • MD5

    a5c084c99f1bef233f1dad55a4c92cef

  • SHA1

    5b48ad7061a513c268ce1ecb24e28be01845e943

  • SHA256

    4f7ef5b710ad878f378b7a76a4af12a216592da5b09e5675bb87d9bcfe1304f3

  • SHA512

    4150e549cc83674d16c821b60d91d7754537fd7c76e9481c1d9eef4d1ac2f4f0feca8253341b787b0ef68c133f59f9a663d059bbd39fd8946ab1fe3f8bd227dd

  • SSDEEP

    24576:ssF6mZZcVKfIxTiEVc847flVC6faaQDbGV6eH81k6IbGD2JTu0GoZQDbGV6eH81Y:fF6mw4gxeOw46fUbNecCCFbNecy

Score
10/10
ratupxwarzonerat

Malware Config

Signatures

  • Warzone RAT payload 1 IoCs
    rat
  • Warzonerat family
    warzonerat
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • a5c084c99f1bef233f1dad55a4c92cef_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections