Overview

overview

10

Static

static

10

738e50879d...f9.exe

windows7-x64

738e50879d...f9.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_cbd17c6f980e5ab7412ef8e35766fe9ade433d714b3064a5b4a1aa054ca663f9

  • Size

    2.6MB

  • MD5

    9481497727f6789bd8cf69039cf6b0da

  • SHA1

    3f906df6a71905ace3508317ada6213303000516

  • SHA256

    cbd17c6f980e5ab7412ef8e35766fe9ade433d714b3064a5b4a1aa054ca663f9

  • SHA512

    f11d7aaa114cce8dd18ddca5b4ecf397ffdc67ad5ed57a73db4036a8bda5a1c5e7ab04dceeec4de6f0b8cd2b1f51dda85447771b00aaff306af3be808505a161

  • SSDEEP

    49152:FkJnoICLALC/fEjSUeczDulUI3f2WL1T/MOhUDg3IGXj7QCGmnqucmA93G:FUiwMNUo2W9/y8Xj8GquI2

Score
10/10
ardamax

Malware Config

Signatures

  • Ardamax family
    ardamax
  • Ardamax main executable 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_cbd17c6f980e5ab7412ef8e35766fe9ade433d714b3064a5b4a1aa054ca663f9
    .zip

    Password: infected

  • 738e50879d1ef6f9c4a1f4d0fcd1fe1df2dbed732dbbf66609d5e297e819e8f9
    .exe windows:6 windows x64 arch:x64


    Headers

    Sections