General

  • Target

    c447cdb7f9d41f5f754a696ffd1acc8c_JaffaCakes118

  • Size

    1.4MB

  • MD5

    c447cdb7f9d41f5f754a696ffd1acc8c

  • SHA1

    d4b47106964860921625a1ef8406cf2a6f69199d

  • SHA256

    19016f6046c546c36eecab64a02330915059a71931fb6ccc1ab057d4805ba7db

  • SHA512

    22415dd83fabde64033d5c8b7bd7da08b6b5683becc63cd214222b8580a36157bbd323a5a82edc62489198c6e7265d8d7c0b77e6ec09c70917c29e7daa25baef

  • SSDEEP

    24576:CxpXPaR2J33o3S7P5zuHHOF2ahfehMHsGKzOYf8EEvX3fZ1Fsa:ipy+VDa8rtPvX3fZ/s

Score
10/10

Malware Config

Extracted

Family

socelars

C2

http://www.iyiqian.com/

http://www.hbgents.top/

http://www.rsnzhy.com/

http://www.efxety.top/

Signatures

  • Socelars family
  • Socelars payload 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • c447cdb7f9d41f5f754a696ffd1acc8c_JaffaCakes118
    .exe windows:6 windows x86 arch:x86

    d69e4c13e25f0ad622344ac56118c0df


    Headers

    Imports

    Sections