General

  • Target

    JaffaCakes118_dfdf6f6fe3208ab1f52c73fbc2809645827ed959af4dc4f7dc100f3049fbe5d6

  • Size

    1.3MB

  • MD5

    018f92a5baa5d79bb7b455ddd487acec

  • SHA1

    9e3d85e76fdc4c84b8c9df5f8974f5bf40e7f1bc

  • SHA256

    dfdf6f6fe3208ab1f52c73fbc2809645827ed959af4dc4f7dc100f3049fbe5d6

  • SHA512

    b8a407d0ebb6dcf8250a86f38de08d73159c12548fc372325718e0361e8a41546be4f8d1139eedc45ce0ac3299a7196839e54c1e5ab571d906e795405f7db9da

  • SSDEEP

    24576:U2G/nvxW3Ww0t6TnzGmVBDh4+aknuRRZJND0gFJ4rD/IjC:UbA30GnzV/q+DnsXg

Score
10/10

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

  • Dcrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_dfdf6f6fe3208ab1f52c73fbc2809645827ed959af4dc4f7dc100f3049fbe5d6
    .exe windows:5 windows x86 arch:x86

    fcf1390e9ce472c7270447fc5c61a0c1


    Headers

    Imports

    Sections