Overview

overview

10

Static

static

10

13911d2a72...18.exe

windows7-x64

10

13911d2a72...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    13911d2a7225328bf38626acd8c6ac50_JaffaCakes118

  • Size

    7KB

  • MD5

    13911d2a7225328bf38626acd8c6ac50

  • SHA1

    410db842eb920dde686abcd12b42e79861e17a66

  • SHA256

    2ee130d47596a9607ab5194349ea737262cc0a4b5c3ea9bf4f060fb917f52bc3

  • SHA512

    103fb4235c14b58db732def3b7b4a9d43c30f0a5264e4deceb9fc352892acc49b498050988a605fa5cb693bace297c7f7d537d6151679650941bc8c0327d534b

  • SSDEEP

    96:lfZhl8wdS+r3yOYW189fTwUVF0CWHyjk8P1LOmjXfihExo6TujaNp4vPKN+gLJk7:Nzdrr1FG1WDCgmjPZaYEPRLGMUA

Score
10/10
upxxorist

Malware Config

Signatures

  • Detected Xorist Ransomware 1 IoCs
  • Xorist family
    xorist
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 13911d2a7225328bf38626acd8c6ac50_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections