General

  • Target

    309a8303b385958cffe14970238f0ffa_JaffaCakes118

  • Size

    13KB

  • MD5

    309a8303b385958cffe14970238f0ffa

  • SHA1

    ea36ae363736b33c28fdb123c762bea15f30bca4

  • SHA256

    20c010a4f163e1548d5654967452effb7ec18b60034077ff7b2ace4d39dfaa94

  • SHA512

    5ec1163786650a9a0abad0cd15c2e832c645b401885e756321ffb55f861faf53782e1947704d63ce1a2f616175ad8ef514916add3fe8c24f8c1d6d7961e19ad9

  • SSDEEP

    192:Azdrr1FG1WDCgmjPZQv1ifQYpT5xMa27OYYaOCIX5jj2J/e81rXFUA:Aprr1gkDCgSgIZpdxVg48rrXFB

Score
10/10

Malware Config

Signatures

  • Detected Xorist Ransomware 1 IoCs
  • Xorist family
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 309a8303b385958cffe14970238f0ffa_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections