General

  • Target

    fb256e6d9011314a6063fe3d1c19036b_JaffaCakes118

  • Size

    190KB

  • MD5

    fb256e6d9011314a6063fe3d1c19036b

  • SHA1

    dc1e8d30dd8543dbca7fd7b44f9ab12ca1eb5f90

  • SHA256

    36a5d30ed1824e0808018bf5af2a2ab1733b00e1d91b47971fe9e47098b9dd8e

  • SHA512

    92154c50e3e316981d641a262a9ce9e5314f131fa6dc5ddeafa48ff7f0e254617403635fa4ae7f402730ac8ed5cb97983f6467fb7785107ac7d2a8d0542a7bb5

  • SSDEEP

    3072:md6EEWk7rLDceaxDjeDc03aL2jpTPncJ/fMs0kX4BjmWuIK/YuEwZdlPOFcNP+i:CWHL4eWjeg0qGpzA/UdpS3IxuE4uc5

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • fb256e6d9011314a6063fe3d1c19036b_JaffaCakes118
    .dll regsvr32 windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections