General

  • Target

    JaffaCakes118_6d5892bf25d15c71699d9dbad6aac93b91c3235183aba372f9a0c4cfc2a8f217

  • Size

    1.3MB

  • MD5

    28a24db981eb6c18a75789793b675196

  • SHA1

    ef4a25ab76d2b9122fc366e56e84a454a8323871

  • SHA256

    6d5892bf25d15c71699d9dbad6aac93b91c3235183aba372f9a0c4cfc2a8f217

  • SHA512

    059c40af42c41c8c460031f6c140bcd98f2cc741406c03d16dc21ef9af4f9712b0f1f5eaa4a2fa8631eab89c604c7a9f9b25d4a186a583a9244c4880db4a9dbe

  • SSDEEP

    24576:U2G/nvxW3Ww0t6TnzGmVBDh4+aknuRRZJND0gFJ4rD/IjC:UbA30GnzV/q+DnsXg

Score
10/10

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

  • Dcrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_6d5892bf25d15c71699d9dbad6aac93b91c3235183aba372f9a0c4cfc2a8f217
    .exe windows:5 windows x86 arch:x86

    fcf1390e9ce472c7270447fc5c61a0c1


    Headers

    Imports

    Sections