General

  • Target

    da8a36f28db32b899d64ff81a3a0d99c_JaffaCakes118

  • Size

    168KB

  • MD5

    da8a36f28db32b899d64ff81a3a0d99c

  • SHA1

    0af0a7f489e097c9f451e6f9bafd8571e280955a

  • SHA256

    7183bd29b82031342f20a26fd5f9c65b539a3c7f7e35f3b7c2b86666cd6a58c8

  • SHA512

    0eea762d9adf9b6f88454da21a5bbd672983d4bf1a6bfdd1b2a1b0793f2d73a2bcf3556f5ea1de2eca1520693b690d1123ce7e1b73da79fd08540c2fc4298a18

  • SSDEEP

    3072:2cjYIOetwpJL9i55nLXaq5UI+Md0PU4PU4VLahhsBwBObC9Mj1E:RjYFEBmM5d08V4p8hswBaSMx

Score
10/10

Malware Config

Signatures

  • Gh0st RAT payload 1 IoCs
  • Gh0strat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • da8a36f28db32b899d64ff81a3a0d99c_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    1d1a38da13d04677f392f9ca4e289b52


    Headers

    Imports

    Sections

  • .data
  • .rdata
  • .reloc
  • .rsrc/BITMAP/103.bmp
  • .rsrc/MANIFEST/1
    .xml
  • .rsrc/MENU/102
  • .rsrc/version.txt
  • .text