KSelp
SetSvText
SrvStat
SvcEntry_Seclogon
writedllpath
General
-
Target
d2fea606b125e23f5376a6a8e0926c1a_JaffaCakes118
-
Size
250KB
-
MD5
d2fea606b125e23f5376a6a8e0926c1a
-
SHA1
8326aae6c0ef5b269bde5e42ad3e55ca722fe5b3
-
SHA256
d2f86ecb9bbdc0c71cf3205b63adc5376cab909b327ed617a03d6744a003f27e
-
SHA512
84a2552f62ce43195a5570be6808c0cd59b4aabc061a4acf32e7547afe7f93237bfa8f5a55d02357e9347154768c360cf996b8eea04765069a6c23d94134bf55
-
SSDEEP
6144:+FXaF7LjNfzAvIkRL7/VBNzQ7CxbHli7JA4S:2XaZNfsvIyVzQG9Hg7JA4S
Score
7/10
Malware Config
Signatures
-
ACProtect 1.3x - 1.4x DLL software 1 IoCs
Detects file using ACProtect software.
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
d2fea606b125e23f5376a6a8e0926c1a_JaffaCakes118
Headers
Exports
Sections