Overview

overview

7

Static

static

5

f543a5a24b...18.exe

windows7-x64

7

f543a5a24b...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f543a5a24bd2bc09121de19ce90a8697_JaffaCakes118

  • Size

    4.7MB

  • MD5

    f543a5a24bd2bc09121de19ce90a8697

  • SHA1

    1c84d481b74eb05f507dbe3abbad73d5d480991f

  • SHA256

    745d89b49a8658aa910db4df7d1ecb6cabc2601750e18e9cc89f6ed7f0baf276

  • SHA512

    a7817a426b3414167ab1ef22132167af9c656cdbef12c358f207d847ede9daa52ae5446924a1c2dee126d53de4a86c1737b08233e5b7d5e84c592fe3df98ee9a

  • SSDEEP

    98304:c1wJ4X3IT06wWXuycm/iAofR5N1yvA1pYAWBcrKFrSJSnMsEXXnZuJK:cKKWYbycm/iAofR5vyvCYIeSfsAZuk

Score
5/10
upxpyinstaller

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Detects Pyinstaller 1 IoCs
    pyinstaller
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • f543a5a24bd2bc09121de19ce90a8697_JaffaCakes118
    .exe windows:5 windows x64 arch:x64


    Headers

    Sections

  • reverse_backdoor_p2.pyc