Extracted

• • Target

    JaffaCakes118_4181b88528683694b447ad5b4421f0a0

  • Size

    944KB

  • MD5

    4181b88528683694b447ad5b4421f0a0

  • SHA1

    118bf5aff60b984d554c4970aa958d557dff17c4

  • SHA256

    daf66d4eb92cdb61bf0e7e22636fac7858e0243b78c87fe1c21dd1a88d722983

  • SHA512

    37e94a6b59682f4304413c139a865e5c21d18a3aa9de2ba64d35927310bcb8ee9511dcdf68dbb9ae7549c353792f934286c06e9e4f6a9b10c84259d5901c66fa

  • SSDEEP

    24576:aSXmGK7yRrPg37nzH2A6AoLM8b0ekeHoXExGwTFuAyqU:dXegrPg37nzH2A6AhGket9uAyqU

  Score

  10^/10

  salitybackdoordiscoveryevasiontrojanupx

  • Modifies firewall policy service

    evasion

  • Sality

    Sality is backdoor written in C++, first discovered in 2003.

    backdoorsality

  • Sality family

    sality

  • UAC bypass

    evasiontrojan

  • Windows security bypass

    evasiontrojan

  • Windows security modification

    evasiontrojan

  • Checks whether UAC is enabled

    evasiontrojan

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2