Overview

overview

9

Static

static

9

PasswordFox.chm

windows7-x64

1

PasswordFox.chm

windows10-2004-x64

1

PasswordFox.exe

windows7-x64

9

PasswordFox.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    fadf24c46c80cd7a1ec62de1801bbad7_JaffaCakes118

  • Size

    45KB

  • MD5

    fadf24c46c80cd7a1ec62de1801bbad7

  • SHA1

    56d306b9f377ec760b86db52d228c08df96db040

  • SHA256

    33eaa38de5bb2bc862632038915eee9adc0a20c56e64a2d709857fe782134f6f

  • SHA512

    a995bb76a837db32d45c53f096a34a215bcee1a0cbc540ad837f2ccda7b7eb20ccc19a76d3d7a9b122643c5e8f5333a63cf1c794509c731106adf74f6fa9df62

  • SSDEEP

    768:0baKTN/nn9O4grURLrLEU2PGkaNWGNexvTxGpDO2elduQKr/fim6EokHmIlwdXxv:QVTVnQ4grURLrLElP5aNWGNKQKMQKjiV

Score
9/10
upx

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • fadf24c46c80cd7a1ec62de1801bbad7_JaffaCakes118
    .zip
  • PasswordFox.chm
    .chm
  • PasswordFox.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • readme.txt