General
-
Target
3d43c7a4be9da757591f4052c133b58f_JaffaCakes118
-
Size
6.6MB
-
MD5
3d43c7a4be9da757591f4052c133b58f
-
SHA1
52e4b0b06bab446a5701211a4322e5d3fa70ebe6
-
SHA256
d572a3e702f57df2dd68da71520522dea73e0b71e4d7087361fafb8d3afa75a5
-
SHA512
73635ed70b2cdd302448c2229a8a59584e786712dd877958111f06060c7724c1f0f7ea64deeb1a0221d76505f19ac734338f0a809c8d41313bd7b968a5035ce1
-
SSDEEP
196608:m405QYtsTEB08T8HehLvMKGQe15RaCpLl39hMsYr:mVdfB08TOehAgevAChB9Od
Score
10/10
Malware Config
Signatures
-
Contains code to disable Windows Defender 1 IoCs
A .NET executable tasked with disabling Windows Defender capabilities such as realtime monitoring, blocking at first seen, etc.
-
Detects Eternity stealer 1 IoCs
-
Eternity family
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
3d43c7a4be9da757591f4052c133b58f_JaffaCakes118
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
Imports
Sections