Overview

overview

3

Static

static

3

niuniu/Niu.xls

windows7-x64

1

niuniu/Niu.xls

windows10-2004-x64

1

niuniu/NiuNiu.exe

windows7-x64

3

niuniu/NiuNiu.exe

windows10-2004-x64

3

niuniu/新...��.url

windows7-x64

1

niuniu/新...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    e82254b98296eb6fc2c748c2728032a2_JaffaCakes118

  • Size

    760KB

  • MD5

    e82254b98296eb6fc2c748c2728032a2

  • SHA1

    897114e07d822505f6573b941abc72f77644f8bd

  • SHA256

    09b06c5708553f92fab7966ce9c0b73ed97f77a52944ca5e2b933db6657560d4

  • SHA512

    93d69faf08fec5394be0eb05dba4f39640ceac7f70aea418a6451878eafc5a622ccc8da83c7758d537e1fc635c97e453be97d7704076d92912006303d2c5f014

  • SSDEEP

    12288:T+QEvIyMYb3mkXMTmHU4EgnwCtvtyeP7/2qPdbQGirhugzPG5q5YjILi2A6fmMfe:GvIyMYb3mkXNHU4rwmUePC65iYgC5q6/

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • e82254b98296eb6fc2c748c2728032a2_JaffaCakes118
    .rar
  • niuniu/Data/httpblog.sina.com.cnrsscannes.xml
    .xml
  • niuniu/Data/httpblog.sina.com.cnrssliaonanguwang.xml
    .xml
  • niuniu/Data/httpfinance.ifeng.comrssheadnews.xml
    .xml
  • niuniu/Data/httpfinance.ifeng.comrssstocknews.xml
    .xml
  • niuniu/Data/httprss.sina.com.cnnewsallnewsfinance.xml
    .xml
  • niuniu/Niu.xls
    .xls windows office2003
  • niuniu/NiuNiu.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • niuniu/config.ini
  • niuniu/gu3.xml
  • niuniu/history.txt
  • niuniu/home.txt
  • niuniu/menu.xml
    .xml
  • niuniu/新云软件.url
    .url