Extracted

• • Target

    JaffaCakes118_60aaaa32b73fd62b9369066e1103fa19

  • Size

    221KB

  • MD5

    60aaaa32b73fd62b9369066e1103fa19

  • SHA1

    5c7f056f197107a60fe4b81e0fda188b472c6c6e

  • SHA256

    91e49307288726440463a8c28cef4754bd566fa8135a74cabbe2108c46f09784

  • SHA512

    fa3ae3d9fcdfd3acf056da08b33390fb4caf55ebbbfc8e01ab6841200cecb66acc62e4a947f07900b75cb21338d6fc1a1f372bf393d7f47fbc603717827dd3b6

  • SSDEEP

    3072:YAOoNOj8WplAhqIgNLPRoYgN5mLZHChw2ERGyfitUhZ+hYZ4z1sxtbjIUWnoRzs:28WplYqlNLPRoYgyHChaRXf7Z4zytbLQ

  Score

  10^/10

  discoverysalitybackdoordefense_evasiontrojanupx

  • Sality

    Sality is backdoor written in C++, first discovered in 2003.

    backdoorsality

  • Sality family

    sality

  • UAC bypass

    defense_evasiontrojan

  • Checks whether UAC is enabled

    defense_evasiontrojan

  • UPX packed file

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  behavioral1behavioral2