Overview

overview

10

Static

static

9

d937649959...18.exe

windows7-x64

10

d937649959...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d937649959e9f1b398815ba499c2c751_JaffaCakes118

  • Size

    699KB

  • MD5

    d937649959e9f1b398815ba499c2c751

  • SHA1

    269502c04944d6b9e442af35f9e923103e1e477f

  • SHA256

    8c1ba03136ab60409d577c7b61fc4bf858468377ff92f438dad8dff45262b6ec

  • SHA512

    10b3a80cd2ec3afb8ea45614c755758c9b31f9dcf3eebf39517616894407554994192ab4ce196cc69e1225afb07cee134a68f14bb6a42fc943e0a1727e2a57fe

  • SSDEEP

    6144:JsOKSDMpra6UeOiolIJ6rHD/rj7uALWseM0l5yI0gLlfXRAV3lwoMGy:Mp1siols6rHD/rj7uAw15yl0Noy

Score
9/10

Malware Config

Signatures

  • Beds Protector Packer 1 IoCs

    Detects Beds Protector packer used to load .NET malware.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • d937649959e9f1b398815ba499c2c751_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections