Overview

overview

8

Static

static

7

d3ab42e4ba...18.exe

windows7-x64

8

d3ab42e4ba...18.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    d3ab42e4babbb423dda0db9a430acf75_JaffaCakes118

  • Size

    438KB

  • MD5

    d3ab42e4babbb423dda0db9a430acf75

  • SHA1

    b5c21a12fd6af834d5269d406f3e1305822d5692

  • SHA256

    8a0e368b7453ad44f3e366cd173d32c2e2ed4548eb0eb8f935dfa8cf26af848a

  • SHA512

    975cb5c69124570df4bca1d67ba11fdd9fc2c3bd7cd2198fbf85c524b7fb197125ff4b2919e8fcf06c9939b7cbf9d543dd72458a74b6ad8b813cd10e7ad80c58

  • SSDEEP

    12288:XTvhFSKiaybulUIfDSxBl7rOijhTDH1EoLgte:XTvbLia2ulUIYOiFPVEoMe

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d3ab42e4babbb423dda0db9a430acf75_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    465d26967af1346f094e36253f9c8f2f


    Headers

    Imports

    Sections