Overview

overview

7

Static

static

5

29b7321330...118.gz

windows7-x64

3

29b7321330...118.gz

windows10-2004-x64

3

Rabbit.32.sys.b.exe

windows7-x64

7

Rabbit.32.sys.b.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    29b73213309d2e36761677f2d4f4f578_JaffaCakes118

  • Size

    189KB

  • MD5

    29b73213309d2e36761677f2d4f4f578

  • SHA1

    79de8ccccf63a13033773385131f2600bde80db8

  • SHA256

    b950d8a48f6e6dce959aebf2a1bf4832f31bcfdf42bd6ad3ce20385e0746dee8

  • SHA512

    623d2e196411c1c1c8747816d9367fc1fe505ec9b4786a6b9591f435d5ae80eb3162d8852c3a41c0dff1de7cc87c13bc9f035c781c4361d6dc71efa97b4bdbf3

  • SSDEEP

    3072:rlJoqhOvYLURKEY96SnGMZffl+B4rtwg0YEGrbpesvJ6a8TIJW24/dmOVP0JnPEr:rE/vYYRY9RzfQ4r6P8bhka8TI0bd7VP5

Score
5/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 29b73213309d2e36761677f2d4f4f578_JaffaCakes118
    .gz .zip polyglot
  • sample
    .zip
  • Rabbit.32.sys.b.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections