General

  • Target

    1f5257a6bb7f294588c2c7871df95960_JaffaCakes118

  • Size

    7KB

  • MD5

    1f5257a6bb7f294588c2c7871df95960

  • SHA1

    941cf0701205010faceb1b92f48926db44a4b90f

  • SHA256

    57194af0f251effbcae37460c06fdf476fdea061b1c8ec87251bd28be62f8b46

  • SHA512

    3b4d18d0a7b68d2f0e7f55d413edf429e6f306fb2aea1f1a1e4b2b3f3f11ffa2d5e15d49b2296be013d0671d2e5755aca8fdb50750667ecd845e5f79d0f41946

  • SSDEEP

    96:l/9Zhl8wdS+r3yOYW189fTwUVF0CWHyjk8P1LOmjXfihExevFntnwWZGXquipy1P:59zdrr1FG1WDCgmjPZ2LNGXqb0GMUA

Score
10/10

Malware Config

Signatures

  • Detected Xorist Ransomware 1 IoCs
  • Xorist family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 1f5257a6bb7f294588c2c7871df95960_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections