_LOADLIBRARY_DUMMY
_RunAs@16
General
-
Target
aa8e0bc08784297e4f46654c1215cf14_JaffaCakes118
-
Size
37KB
-
MD5
aa8e0bc08784297e4f46654c1215cf14
-
SHA1
c662837903c7b7634784e303b1fce91a952c3330
-
SHA256
2b00d1bafd10b7d0b9bffc7a0286aa01e34901be745e8666e32181ecfdf6097a
-
SHA512
6c5d892cb457f7d994163d704d4df5947f773c803efff9e0cefec4983dc83c9b26ecae2ecbd838e4d09b1035ec1a9838defbfcda7ac248d2c740f06a772c9550
-
SSDEEP
768:ogvRYQ6Tu98ZXmVhXqAi/mu3QcHRItXyXnbcuyD7UdR:PvRYQ8W+XmiA8pFxI5yXnouy8dR
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
aa8e0bc08784297e4f46654c1215cf14_JaffaCakes118
Headers
Exports
Sections