Overview

overview

10

Static

static

10

f3ea0b4114...18.exe

windows7-x64

10

f3ea0b4114...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f3ea0b41143e7afc6221f42f2503653c_JaffaCakes118

  • Size

    267KB

  • MD5

    f3ea0b41143e7afc6221f42f2503653c

  • SHA1

    c3eb377ed5ad63ad7a5fc6fd73d4101c928dac64

  • SHA256

    5512c8b42e96b051ad12fbab36689d10860d807f258a6bc1c77b4b110db5bb8e

  • SHA512

    610feccd8e78ec57a687d412e87519d4bf780aa347ee3068d9d692b263c270a96cf44b6510f7fc4a862dda0c83e062ccaf90a05a17bd16f6d8256ed51f100cfd

  • SSDEEP

    6144:OnUt0y4KIZwZIa+kP63kiYH6NyEyF3Ved54RTeJq:OnU2FHatipBNyEyF3Ve+TT

Score
10/10
upxammyyadmin

Malware Config

Signatures

  • AmmyyAdmin payload 1 IoCs
  • Ammyyadmin family
    ammyyadmin
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • f3ea0b41143e7afc6221f42f2503653c_JaffaCakes118
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections