Overview

overview

10

Static

static

10

de81531468...ed.dll

windows7-x64

10

de81531468...ed.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_622662e4c01c027b1b37ad8480c5a1f6dc56243d3684165c49c7d02b99db59b0

  • Size

    67KB

  • MD5

    f72c91cff2ed4fb85eec7e052904494b

  • SHA1

    ea0aa0c7444c67153a5cb9ddbafe5da14d8f193a

  • SHA256

    622662e4c01c027b1b37ad8480c5a1f6dc56243d3684165c49c7d02b99db59b0

  • SHA512

    d7705905d6c076ed3c9830ab0bbaad50be4a189fa4e62463dfa6b3fde41b322201b081dec28c6048ff8203ab4016997948aa5db42615432162985ac3f50701ad

  • SSDEEP

    1536:YwTH+sWmw/ucpG7IsqWTZBeVINgzUdM4tDnQy01kad:Dj+s6upLBNSWDnMkad

Score
10/10
credmoduleamadey

Malware Config

Signatures

  • Amadey family
    amadey
  • Detect Amadey credential stealer module 1 IoCs
    credmodule
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_622662e4c01c027b1b37ad8480c5a1f6dc56243d3684165c49c7d02b99db59b0
    .zip

    Password: infected

  • de81531468982b689451e85d249214d0aa484e2ffedfd32c58d43cf879f29ded.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections