General

  • Target

    b0dff336be2d8d830e9a0b8502f139f8_JaffaCakes118

  • Size

    38KB

  • MD5

    b0dff336be2d8d830e9a0b8502f139f8

  • SHA1

    0f4436341c75688295846f7c7b7a1aae3504bcca

  • SHA256

    85562628b1cf005e543d9e950e4f0db5647fb385a909d3b6e9063c441aa6e9d5

  • SHA512

    7b0179fcedb3af00677c4223a9edd48a5cd8a0eb8ac4f31e1183fe4999abcaec4bdcc7d239d1a0228d72e242b83deab0e3da1ea50e7993a1335b4bd118737fa0

  • SSDEEP

    768:NNk8Fb2jJpr37qPiAXCs+HTGAB5CY0ZL81F2ts1A2G2oYS7ch0Ys:NKWC9prLqaASP58i0tF2zo1gs

Score
9/10
upx

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • b0dff336be2d8d830e9a0b8502f139f8_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections