Overview

overview

9

Static

static

9

ff640083df...18.exe

windows7-x64

9

ff640083df...18.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    ff640083df294ebaa57661ce3247c188_JaffaCakes118

  • Size

    592KB

  • MD5

    ff640083df294ebaa57661ce3247c188

  • SHA1

    8cd412adfd9d7bb00c5dc15ff5179de474cbd47c

  • SHA256

    e4d7635352fd6f76aa2603b6487ede9461d9f8ad7b0ade409fc75c3a77a19148

  • SHA512

    9a73c5beca4c62a6f37e65a4c92495bb6adddcff9d397dbe73f0e923306bf99ff0951c5d27337c3204185eb2b48ec4383612c7f1b0dcf35e2432725444b315b3

  • SSDEEP

    6144:PASFSpGcXX0ptepPGTRRNeUK+Lj7fUokbMR5h5FfRddmFuNa/Gm33QMIq1/QbJnz:PpcX5VGtRNeU7fogRFlGDtQbvFkbOj1

Score
9/10

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • NirSoft MailPassView 1 IoCs

    Password recovery tool for various email clients

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ff640083df294ebaa57661ce3247c188_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections