General

  • Target

    0595bb254f26e89e993d3daab876796c_JaffaCakes118

  • Size

    48KB

  • MD5

    0595bb254f26e89e993d3daab876796c

  • SHA1

    4566d75df96024ec84124c174919fbb18aa24c2a

  • SHA256

    bd2c4463b6cd5c8b14f6c0fcbce0d539e0a8549b82c341e6ce3af207a380e936

  • SHA512

    e6f2b4db18182ca0f0dbaa6bc5425b7d306678c90e012369aa9ef68da005dd1b364418e6d69a011fea8bc9b7d78affcb025aedd0159f414a4ee05988822cd3d6

  • SSDEEP

    768:tLSbbZZxwyMc+xDLWVcvH7l/7h+PQ96JeO9s5s5wFE2I8Q:tmfzT+xDi+REs6Jn9s4STI8Q

Score
9/10
upx

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 0595bb254f26e89e993d3daab876796c_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections