General

  • Target

    08e8c345cdfbd3f711d48a05236b250c_JaffaCakes118

  • Size

    76KB

  • MD5

    08e8c345cdfbd3f711d48a05236b250c

  • SHA1

    78d4620f7911d31034c40bfa7a860800df346b67

  • SHA256

    bac6aeeb8cf4c86332e0fed8c7d39f215f3e3177580c201577f5aa54dd1e062f

  • SHA512

    dc217e4a5aeb9721490ddbcbef95d48b09430ce03f80ba02fa5fbf9abf0db07b9397b7c78fd6bfeb5d2ff732524bf8c7fc1bcf71fdce1b547d25eaa38d8f17c1

  • SSDEEP

    1536:lEk2GhcdC7LglmRpGDXewDNLUjtSC1AhL/oSFWC8JURUABx:bhcdC7slwnqUZnWURC8JU2AL

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 08e8c345cdfbd3f711d48a05236b250c_JaffaCakes118
    .zip
  • FILE_ID.DIZ
  • IRXP.EXE
    .exe windows:4 windows x86 arch:x86

    4cc5b42e222320121735c6dc8033e847


    Headers

    Imports

    Exports

    Sections

  • IRXP.TXT
  • IRXPSRC.RAR
    .rar
  • RIJNDAEL/boxes-ref.dat
  • RIJNDAEL/rijndael-alg-ref.c
  • RIJNDAEL/rijndael-alg-ref.h
  • RIJNDAEL/rijndael-api-ref.c
  • RIJNDAEL/rijndael-api-ref.h
  • irxp.cpp
    .vbs
  • irxp.dh
  • IRXPZRTL.EXE
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections