General

  • Target

    c8a5093d7690d7479ce18812a2135abc_JaffaCakes118

  • Size

    790KB

  • MD5

    c8a5093d7690d7479ce18812a2135abc

  • SHA1

    84d1de3061488e6d82359e04071d52b1597cdbd6

  • SHA256

    606a327219e54ed3e2b4bb751bce95f0af811f2cf7be007cbd4c12650b3df3c5

  • SHA512

    8834d75740f97b0e706d799a7b520357bdb07ba2f8bbaf9b80c91a0a0e9cc10cf84a75c0791aedd60b8aea600a9f4593d849ca7ffd13eadbc6ba1ecba5cc6d24

  • SSDEEP

    12288:JuPude6ApnglGhBBRlqytxdy72fYcVrsuPude6ApnglGhBBRlqytxdy72fYcVr5:Pe6GlvRld07qVrQe6GlvRld07qVr5

Score
10/10

Malware Config

Signatures

  • AmmyyAdmin payload 2 IoCs
  • Ammyyadmin family
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • c8a5093d7690d7479ce18812a2135abc_JaffaCakes118
    .zip
  • AA/AA.exe
    .exe windows:4 windows x86 arch:x86

    f97ad1acd1ab75d2d973b655b2e7f9b9


    Headers

    Imports

    Sections

  • AA/AA_v3.9.exe
    .exe windows:4 windows x86 arch:x86

    f97ad1acd1ab75d2d973b655b2e7f9b9


    Headers

    Imports

    Sections