Overview

overview

7

Static

static

7

fd4c802aaf...18.exe

windows7-x64

7

fd4c802aaf...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    fd4c802aaf2e6a1aa19c535d33fb5ca8_JaffaCakes118

  • Size

    47KB

  • MD5

    fd4c802aaf2e6a1aa19c535d33fb5ca8

  • SHA1

    0bd83780d377cc1438a7dc2ca30bea5b5c3fafd7

  • SHA256

    14427621b7407c9ec1364c2d2bbd85a2bb9341e739e3ec5f92e8df1c45b6ecb2

  • SHA512

    9fe1b715a1ee8c1f23152f77220608476225013a7d4303c04aa515d3037139dfb09f73bc3c440dadf1dbae78ff9876a4cf6736dff36df13bc1ce6119541b46ee

  • SSDEEP

    768:5yEsvw5YKmQyw2+Q9dWvBGsK33QZP6LPOySQB+0/URTFU6E7LZh0OH/3lLDLtMcD:UEsvcY6ywKGGsKnQpDR4TGVMDt3lDLdL

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • fd4c802aaf2e6a1aa19c535d33fb5ca8_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    61a741ca50275bce1e3ceaa2514de95c


    Headers

    Imports

    Sections