Overview

overview

10

Static

static

9

edc0c4c204...18.exe

windows7-x64

10

edc0c4c204...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    edc0c4c2043ff9ef4b02e7094b0383c1_JaffaCakes118

  • Size

    502KB

  • MD5

    edc0c4c2043ff9ef4b02e7094b0383c1

  • SHA1

    b265f34039abd7ddcb408c5a300475ac71ef0c87

  • SHA256

    c2f689ea53b5b838419afa2e4bb10f126cb98635093f9a6436337f318509d03a

  • SHA512

    8591364aea062c81220e6ee83f6427c81868a809ecf8f285f2393589694dc81f3e11f0385c041baa2d85eb57402f7966c1ddda3a137a693046dca9f319758316

  • SSDEEP

    6144:nbS/QTjhUqBfxrwEnuNcSsm7IoYGW0VvBXCAt6kihwE+VDpJYWmlwnx9PHC:nQtqB5urTIoYWBQk1E+VF9mOx96

Score
9/10

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • NirSoft MailPassView 1 IoCs

    Password recovery tool for various email clients

  • NirSoft WebBrowserPassView 1 IoCs

    Password recovery tool for various web browsers

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • edc0c4c2043ff9ef4b02e7094b0383c1_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections