General
-
Target
0cc6f8245d8a1f91ff3c47b4a35f62b5_JaffaCakes118
-
Size
122KB
-
MD5
0cc6f8245d8a1f91ff3c47b4a35f62b5
-
SHA1
1bab4edfab98c7e36a1c4fbb985e2aae444df56b
-
SHA256
9226760ec0801a97561892d2c8cf04fcc297e3c60b526c42cae393cbd15b5e11
-
SHA512
ddc0c1f15fe8ebb162ce6e84177f5e0f8c12c5f89af0b5efd1cd3a690f1639bfabd276e887724d445c8346a49d2126110d9d5903fbc49d35d4f924c17ceb5099
-
SSDEEP
1536:4+gtsaoEKHl73jIk/pXrq4ZsApl1ILf1TdKMIBSEQyC27TguTBqd+8WbeA1d+VWI:VisVEoXIkdyo1IhTcMy3jBK+2A1dEBIY
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
0cc6f8245d8a1f91ff3c47b4a35f62b5_JaffaCakes118
-
WINDOWS\TEMP\00000000.TXT
-
WINDOWS\TEMP\00000000.ZIP
-
WINDOWS\TEMP\\00000000.rma
-
WINDOWS\TEMP\\00000000.urm
-
WINDOWS\TEMP\\00000001.rma
-
WINDOWS\TEMP\\00000001.urm
-
WINDOWS\TEMP\\00000002.rma
-
WINDOWS\TEMP\\00000002.urm
-
WINDOWS\TEMP\\00000003.rma
-
WINDOWS\TEMP\\00000003.urm
-
WINDOWS\TEMP\\00000004.rma
-
WINDOWS\TEMP\\00000004.urm
-
WINDOWS\TEMP\\00000005.rma
-
WINDOWS\TEMP\\00000005.urm
-
WINDOWS\TEMP\\00000006.rma
-
WINDOWS\TEMP\\00000006.urm
-
WINDOWS\TEMP\\00000007.rma
-
WINDOWS\TEMP\\00000007.urm
-
WINDOWS\TEMP\\00000008.rma
-
WINDOWS\TEMP\\00000008.urm
-
WINDOWS\TEMP\\00000009.rma
-
WINDOWS\TEMP\\00000009.urm
-
WINDOWS\TEMP\\00000010.rma
-
WINDOWS\TEMP\\00000010.urm
-
WINDOWS\TEMP\\00000011.rma
-
WINDOWS\TEMP\\00000011.urm
-
WINDOWS\TEMP\\00000012.rma
-
WINDOWS\TEMP\\00000012.urm
-
WINDOWS\TEMP\\00000013.rma
-
WINDOWS\TEMP\\00000013.urm
-
WINDOWS\TEMP\\00000014.rma
-
WINDOWS\TEMP\\00000014.urm
-
WINDOWS\TEMP\\00000015.rma
-
WINDOWS\TEMP\\00000015.urm
-
WINDOWS\TEMP\\00000016.rma
-
WINDOWS\TEMP\\00000016.urm
-
WINDOWS\TEMP\\00000017.rma
-
WINDOWS\TEMP\\00000017.urm
-
WINDOWS\TEMP\\48E400F0.qsp
Headers
Sections
-
WINDOWS\TEMP\NSD11C.tmp