General

  • Target

    daf9fe215735acb8bfeb1061ecb38de2_JaffaCakes118

  • Size

    175KB

  • MD5

    daf9fe215735acb8bfeb1061ecb38de2

  • SHA1

    5d6d705677237816ec11fa34fd19a84cf12811be

  • SHA256

    eeadee4942b1b1e705151e19b1a0604edc8be74e1dff2c028e43f8e9ed719edb

  • SHA512

    f571351c29f05c42fb0bd1e9bbd75b1da94c75063a6b432dcb1360ba979a1e5bfdf61453626ff16d75d39c26c443ad7af5705c71b5ae1613892785cad698d5b7

  • SSDEEP

    3072:wQeg/NDzTTJxD8/9F3W9V3UnGYzkOHtEwvw8+KHhsLZPf2Adqq++XvNbAHqb19RB:wAh5uzo1SkONTvw8fIfLl+avNbRTRKyV

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • daf9fe215735acb8bfeb1061ecb38de2_JaffaCakes118
    .rar
  • Regshot/Regshot.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • Regshot/chinese.bmp
  • Regshot/english.bmp
  • Regshot/french.bmp
  • Regshot/german.bmp
  • Regshot/italian.bmp
  • Regshot/language.ini
  • Regshot/regshot.ini
  • Regshot/regshot.url
  • Regshot/russian.bmp
  • Regshot/新云软件.url
    .url