General

  • Target

    JaffaCakes118_17f31e1e8571282d02bf2a2ca0817ec203607bf1ba0cd67ec1e26b41d0524416

  • Size

    1.3MB

  • MD5

    89f236d35c0d2b0feba9e2dc1126b748

  • SHA1

    8468de36e821a4bdb1007b1666e282227d25d31e

  • SHA256

    17f31e1e8571282d02bf2a2ca0817ec203607bf1ba0cd67ec1e26b41d0524416

  • SHA512

    81811b0596db8432a72a3867f5ce12e1c0c64426160a42bfcb74b888cee55094b6e853b9abdc34f48fbd281cafd89fe1bdb5ed21b8de55b132d4b1fc1cfae70a

  • SSDEEP

    24576:U2G/nvxW3Ww0t6TnzGmVBDh4+aknuRRZJND0gFJ4rD/IjC:UbA30GnzV/q+DnsXg

Score
10/10

Malware Config

Signatures

  • DCRat payload 1 IoCs

    Detects payload of DCRat, commonly dropped by NSIS installers.

  • Dcrat family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_17f31e1e8571282d02bf2a2ca0817ec203607bf1ba0cd67ec1e26b41d0524416
    .exe windows:5 windows x86 arch:x86

    fcf1390e9ce472c7270447fc5c61a0c1


    Headers

    Imports

    Sections