Overview

overview

10

Static

static

9

New Order.exe

windows7-x64

10

New Order.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ecec92df7dc52bcc3016714eb954fadd_JaffaCakes118

  • Size

    315KB

  • MD5

    ecec92df7dc52bcc3016714eb954fadd

  • SHA1

    fa059149b8762c1c00fd22c5ce6433db713b72b7

  • SHA256

    f22f62a1fa67190bb171f2b31406920ee9d45c5fc1e35240122d42b1bb19332a

  • SHA512

    5bd5b0834293d515c6a3b370846b954a88f75abcd65307e48cc8ebb779f5bfaca8cf9e7a236aad8c1faba715c8ad0de4dd71867d4ca4a86ada86e9a9014fdc38

  • SSDEEP

    6144:4wfiVqIuYDslV2p/9McX5Viw77T8g23YDXv:f6ANYD4gplMcXtj2Cv

Score
9/10

Malware Config

Signatures

  • Beds Protector Packer 1 IoCs

    Detects Beds Protector packer used to load .NET malware.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ecec92df7dc52bcc3016714eb954fadd_JaffaCakes118
    .7z
  • New Order.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections