Overview

overview

5

Static

static

5

root_tools...ls.exe

windows7-x64

5

root_tools...ls.exe

windows10-2004-x64

5

root_tools...��.url

windows7-x64

1

root_tools...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    fd623e5e7cb34472f8723c10184bf8a8_JaffaCakes118

  • Size

    2.4MB

  • MD5

    fd623e5e7cb34472f8723c10184bf8a8

  • SHA1

    08d4aac40f4d6f2fb1264f3402c98754072df533

  • SHA256

    fb2bb92836a0ec1426f6163cb0d908a2b8801863794045a032f60ff05d871780

  • SHA512

    1f9c359c48c0b87ffc677af73313c9b406d32b59b1853e9ab113dddd876910ad22144e4f18f62eec410a03e35f2942d9d0aa68a5eebdf27d79cec5069d8364c4

  • SSDEEP

    49152:MjokjrIKgfcxFfsfX2p8uDUlEsL2sdEWRK4YNtJT1KQF:DkFgUDsfGp8nFNdK/Xww

Score
5/10
upx

Malware Config

Signatures

  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • fd623e5e7cb34472f8723c10184bf8a8_JaffaCakes118
    .zip
  • root_tools-v1.0/root_tools.exe
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • root_tools-v1.0/ź˵.txt
  • root_tools-v1.0/ƶROOTƶROOT_v1.0_9.url
    .url