General

  • Target

    JaffaCakes118_cf6315a04080fc61fa1bcc006d0dbb52

  • Size

    320KB

  • MD5

    cf6315a04080fc61fa1bcc006d0dbb52

  • SHA1

    e42959df583c9197204a1f907c7731334498693e

  • SHA256

    01de46a840296756d1f790f69c54859ecb26e8fb76b5f5f31436f8df6decb818

  • SHA512

    176169456fc2d3f48b756c852e652e3b3a01c08baaaf1380d5d62eec098ca5e804d89fd6323f2d6c8a4caf0a4ad30fb9a609cf2f99f5c57a4f3a28a3c74e3479

  • SSDEEP

    6144:oTw1o1IV3puaibGKFHi0mofhaH05kipz016580bHFP86JQPDHDdx/Qt6R:GTgvmzFHi0mo5aH0qMzd5807FPPJQPDF

Score
10/10

Malware Config

Signatures

  • Detect Pykspa worm 1 IoCs
  • Pykspa family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_cf6315a04080fc61fa1bcc006d0dbb52
    .exe windows:4 windows x86 arch:x86

    a1161b9f4081312e64af594f73664c29


    Headers

    Imports

    Sections