General

  • Target

    b18e331ad20dea4b2b4e7c1825f251d2_JaffaCakes118

  • Size

    24KB

  • MD5

    b18e331ad20dea4b2b4e7c1825f251d2

  • SHA1

    d7a56e8d777273c3e6abd515ccdcf82f26facb4b

  • SHA256

    c9654e6d32c02184fd50d88268331cdbd727f8d15f2c97d914f5f2f16d5fc5e6

  • SHA512

    f4c784ccccf9ca7c4c2bab390727973903772b9725ad865a1c69e0d3a7b75f6099dccb279fb5adf97d4cdb4aa19c9f7092029a6092c4becdfb8da08083dc2f1b

  • SSDEEP

    768:+sGVvUILMZFO0ABWYdeAciybmzlD+ulCGHm/:qVv9MZ/5YkOt+Z

Score
9/10
upx

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • b18e331ad20dea4b2b4e7c1825f251d2_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections