Overview

overview

7

Static

static

7

DLL.dll

windows7-x64

7

DLL.dll

windows10-2004-x64

7

EXE.exe

windows7-x64

7

EXE.exe

windows10-2004-x64

7

LoadDll.dll

windows7-x64

7

LoadDll.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    ce2726910431dbf7681be460e85a2d40_JaffaCakes118

  • Size

    590KB

  • MD5

    ce2726910431dbf7681be460e85a2d40

  • SHA1

    a019c4e46ff1d70c071adb5d49556777a8e0d3da

  • SHA256

    16259e3a30d3568f9b87d9d8bac539b6ab07c588867ec53c4afcefa0a8a2aa74

  • SHA512

    1befe5d4565f299e1febe4bc548954dbd67e54f693354b829595b0a028b660ce8d41811abd5c7e4b250fa9a3c229fc006b5db3b14b28adaad30ba244ec5bdc92

  • SSDEEP

    12288:/dZTua+I00o0v1qdaa6YvqJE4R41OQ4Cgh6W4y/lB0bFHGJ:/dZd+I00J0dnvqOu41OsQ3dB0bwJ

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 2 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • ce2726910431dbf7681be460e85a2d40_JaffaCakes118
    .rar
  • DLL.dll
    .dll windows:4 windows x86 arch:x86

    a9ac6f2144766a6f86214c4fd37e82d3


    Headers

    Imports

    Sections

  • EXE.exe
    .exe windows:4 windows x86 arch:x86

    293907b456b97d093e4d2bf974ff62bc


    Headers

    Imports

    Sections

  • LoadDll.dll
    .dll windows:4 windows x86 arch:x86

    380634dd6700d478f3e6486d64928c62


    Headers

    Imports

    Exports

    Sections