General

  • Target

    b98c535248ec9702f59689d8bb0d6ec0_JaffaCakes118

  • Size

    307KB

  • MD5

    b98c535248ec9702f59689d8bb0d6ec0

  • SHA1

    18ec28747062c7d96fee8d730d46f86450253932

  • SHA256

    07cc890889794dae93ae9d105a471624927dbd620f2dbe5b4a952955e7a4f840

  • SHA512

    7962dd08d52c01a78460ecb18d7ee88fa3b5bc9036c362ba361e286a167f9a68e059d10f99ea24199a97e93303a4a934bd525d467ebaa1fdb4b28835654fc0bd

  • SSDEEP

    6144:X4KbG08oU3A+ZkGL0y6rACSqfe7vQfwyN/AkYF8aQZYZzeHh:XLn8V3EGAJi/k/AyY5

Score
10/10

Malware Config

Signatures

  • ModiLoader Second Stage 1 IoCs
  • Modiloader family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • b98c535248ec9702f59689d8bb0d6ec0_JaffaCakes118
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections