Overview

overview

7

Static

static

7

3add582b17...18.exe

windows7-x64

7

3add582b17...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    3add582b1771c258d9c5bd41b42f33b9_JaffaCakes118

  • Size

    1.2MB

  • MD5

    3add582b1771c258d9c5bd41b42f33b9

  • SHA1

    8e1a060ea337988b4acaf5d687eef162f96045fd

  • SHA256

    afbe1759a53d2da348f931ef38dd7262c5cec0ebf43b18bc40917289d6389c85

  • SHA512

    ffd9845ccede18c5635276473f4ac67ec24501a7122e78d2724fb3f59c6c0ae6bec1968ff687fec395b8511feb99eb15c297348c68a5b1eb431abc0a08e6d2f6

  • SSDEEP

    24576:fwbmEnTIpQ72nGNrbj+xvD6IwZ0SI1uw4EqNLB:fwbTmQynGNrbj+1wZfIw

Score
7/10
vmprotect

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

    vmprotect
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3add582b1771c258d9c5bd41b42f33b9_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    e99071c3400d339b5320eb224ae8d5ee


    Headers

    Imports

    Sections