General
-
Target
ae27bf199c6c9c71e538551a85723723_JaffaCakes118
-
Size
48KB
-
MD5
ae27bf199c6c9c71e538551a85723723
-
SHA1
1657760763308c97673293f39f39bc26cd55e5fe
-
SHA256
cd04532c19befdb29cf65e89636a6383486546b84df8e87d8f8502b15496d2e2
-
SHA512
4072ff644a31407db91c6ccf410af577aa01b06fc8024b0b92e0c81cbecf00394ef10b12499137d9fe7b9982790ccc305aa47a31898bd7c8a01599a1520f6e30
-
SSDEEP
1536:JeAp0EuFT98O4XGNQpa/oHEzeyZsCZY5TAkCeQneTo+M:JTpxKxlKGNQsVvK5TAXeQeTo+M
Score
9/10
Malware Config
Signatures
-
Detected Nirsoft tools 1 IoCs
Free utilities often used by attackers which can steal passwords, product keys, etc.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
ae27bf199c6c9c71e538551a85723723_JaffaCakes118
-
iepv.chm
-
iepv.exe
Headers
Sections
-
out.upx
Headers
Sections
-
iepv_sites.txt
-
readme.txt