Overview

overview

9

Static

static

9

385aa692e0...18.exe

windows7-x64

9

385aa692e0...18.exe

windows10-2004-x64

9

Sharing

Copy URL Twitter E-mail

General

  • Target

    385aa692e0468f6c16e4d9c088f0c18b_JaffaCakes118

  • Size

    43KB

  • MD5

    385aa692e0468f6c16e4d9c088f0c18b

  • SHA1

    4ae1ae66e0deb2d09e7d9c69e51fc8ec654b7371

  • SHA256

    79826924d1e2eb3bed065e28643c92e20e7215fc6b6309773627c32162a9d7d3

  • SHA512

    f942aff7f71007a809e22e940cfe9fb6b4de1c3e0f9e1d730a60595bb706a5444985134ca4347853d7452c99760f895d983cfb0b8a8661dcf39998af879f29e6

  • SSDEEP

    768:MD+r9vbCbifyMWCvNTXYRUL9hgATvZQB2KCM9ZIGVcrMQbJf04UO+:MD+Y+fyMHvNTXYA9hgQ2T92GuMQVMBx

Score
9/10
upx

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • 385aa692e0468f6c16e4d9c088f0c18b_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections