Overview

overview

9

Static

static

9

fe12b8a7da...18.exe

windows7-x64

9

fe12b8a7da...18.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    fe12b8a7da6866604b2f8d4c749ce77f_JaffaCakes118

  • Size

    2.4MB

  • MD5

    fe12b8a7da6866604b2f8d4c749ce77f

  • SHA1

    d6e5aad65635d280be0e656621db16707f1548d7

  • SHA256

    26f49384a1b79d6e999034779af97e04b64398c63b9acf216625504bd8210aa6

  • SHA512

    ac6cdf85a5be5a4695f364c551822ca71e61a3455025b70bb7ca48c433097e2fe9ddeec241391e86871b2dc4745f23cffcbf5d8d7c3304267c429e2620570885

  • SSDEEP

    49152:JuAqBNlilnT8EIhSQ0UvxQeIPmsz7iKKhvYym0TlR+A9lmktTqg6LaKY7eA0:JuA+N0lT8EIh7xvxQ9Vz7i5hvnmalR+m

Score
9/10
upx

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • NirSoft MailPassView 1 IoCs

    Password recovery tool for various email clients

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • fe12b8a7da6866604b2f8d4c749ce77f_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections