General

  • Target

    75da0c3f156cfa4e002954d92c244c29_JaffaCakes118

  • Size

    655KB

  • MD5

    75da0c3f156cfa4e002954d92c244c29

  • SHA1

    bcc0891dfd4bf3051be1bc67799e9cd098332158

  • SHA256

    58220cd0fc64c1175b1ac57cd66c60e73c1706833a0d83395ebf0a0f6b0d94a7

  • SHA512

    bc322b7b274f1f0b174d1394e483eb898eb08c3bdf563e33b95f651cb31bf3789ac86ec2adaaf783bb9102c928b65d6070892658a3574314c7768c8b055ad693

  • SSDEEP

    12288:mvEMxncEPxbWpwcfdPqWAyOhW1Hh2k8+OnTr3Tl3AXqWAyOhWUp+b0:mvRntWpL1f1BdWnhw3+h

Score
10/10

Malware Config

Signatures

  • Mimikatz family
  • mimikatz is an open source tool to dump credentials on Windows 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 75da0c3f156cfa4e002954d92c244c29_JaffaCakes118
    .dll regsvr32 windows:6 windows x86 arch:x86

    72ecd89787330a335ca18aa4e6dc4af5


    Headers

    Imports

    Exports

    Sections