Overview

overview

7

Static

static

7

db89a6ca26...18.exe

windows7-x64

7

db89a6ca26...18.exe

windows10-2004-x64

7

$PLUGINSDI...on.dll

windows7-x64

3

$PLUGINSDI...on.dll

windows10-2004-x64

3

$_0_/TeamViewer_.exe

windows7-x64

$_0_/TeamViewer_.exe

windows10-2004-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    db89a6ca2639ab0053dc53bd52242cb3_JaffaCakes118

  • Size

    100KB

  • MD5

    db89a6ca2639ab0053dc53bd52242cb3

  • SHA1

    3cd3e1c6477c0c3a083b7ea5adebd4655b392919

  • SHA256

    9606bafb912847c7b35d4ddb5f6d593e54026bdebd65797dab585502620becba

  • SHA512

    a36d9f6de589ea99a99e258f73157ea1016e094635e7b0d6e7b02c4eed01247a264162a935155d82c7f4b628d9d4ea687d32b33ac56542cf29a544ab929ce3a0

  • SSDEEP

    3072:mfSHofYRxYv0sTpMU4H11kIM6/e/EgFlCxlTyILE22Y4yofYRxYv0s4:m6wTh4H8NfliyILlN4/4

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs
    installer

Files

  • db89a6ca2639ab0053dc53bd52242cb3_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • $PLUGINSDIR/TvGetVersion.dll
    .dll windows:4 windows x86 arch:x86

    7f27fb2f8604769e3f1416e79e2b660f


    Headers

    Imports

    Exports

    Sections

  • $_0_/TeamViewer_.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections