General

  • Target

    0429261b77f91ae4092ecdd76f3bf791_JaffaCakes118

  • Size

    43KB

  • MD5

    0429261b77f91ae4092ecdd76f3bf791

  • SHA1

    03857d2173b0b32a9f1d7991cc7e5730c44a6f65

  • SHA256

    cd5bd25401765b37363e8c2b9a1ede9ed78113b0d18e0c11beda4ba0dbd8d708

  • SHA512

    bde185e76ed195013feabfd3b90858b2180f627c3403b11f0f9e69ba215f295800b5ecdd9f30d98d16d0c7e844f1877e4ae5918bd7ad30f611d7b147451a6df1

  • SSDEEP

    768:A2uRm5u9883lr294jrUyR8Ac8k6YkcqAOTC5J8cIlSx5E9AQP2jt03i:AquPxjR1caQ3IC5J8cx9jt

Score
10/10

Malware Config

Signatures

  • ModiLoader Second Stage 1 IoCs
  • Modiloader family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 0429261b77f91ae4092ecdd76f3bf791_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections