Overview

overview

10

Static

static

10

de61b0d8ef...18.exe

windows7-x64

10

de61b0d8ef...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    de61b0d8efdbe47ef05476ec90a7ce35_JaffaCakes118

  • Size

    423KB

  • MD5

    de61b0d8efdbe47ef05476ec90a7ce35

  • SHA1

    f7de2ffe5109de09b27261e3c5b74ba643882ce9

  • SHA256

    01879fd26f86d0f7d5fa74f381e10b498adb636cde6ae9e0c3d62f65a1568d0e

  • SHA512

    e99adf694647354b8f29ceead2f0e9d1a3ae0a192c8ab34d3ab3ea2fbc9cd35433067ebd3ad5c167f47d00a7be077236a3389e4f23e993b30a48381c737b1662

  • SSDEEP

    6144:TG377xS2Vp2CeiorXhwTBN53GpcCJJvH9IFoSAzM4djnzO4O9ZQb6MSuK:ir7xS2Vp6FwTEbJJvHyoScM416zQau

Score
10/10
upxmodiloader

Malware Config

Signatures

  • ModiLoader Second Stage 1 IoCs
  • Modiloader family
    modiloader
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • de61b0d8efdbe47ef05476ec90a7ce35_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections