General

  • Target

    be93d12b6bf3a30e155d2fd5f7e9064a_JaffaCakes118

  • Size

    45KB

  • MD5

    be93d12b6bf3a30e155d2fd5f7e9064a

  • SHA1

    eee5eb1e5a9e60a4c340c2b3583a5277609cf33c

  • SHA256

    a5d8564f55b17dd56a0b606d7905d298ec45c39210b0b5d677ae836d46dde109

  • SHA512

    dca29c5483a91ab97cd19dde52e8096af2233f3d81bb206237be1ab55c053603b268bc417057ab2c0ab8ac05333745ad6eb207f315f5ce67e0c7d6193f2ce3ca

  • SSDEEP

    768:fiVY8VdSM4kd0Vqsq2EORaVsZxTqwfX/vxCT+/7m7RlFML0VT0romtboU7gDYozW:fiy4Xsq2Ed0/fXRCVd3T0romtU9xzvKD

Score
9/10
upx

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • be93d12b6bf3a30e155d2fd5f7e9064a_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections