General

  • Target

    ee233e16958768992086207345e84556_JaffaCakes118

  • Size

    127KB

  • MD5

    ee233e16958768992086207345e84556

  • SHA1

    7647ac35b342f27ee51407ed63fa680b20b8fafb

  • SHA256

    24fc6e7c22402cb67de02d3cffb6f9659db3a7c25e74c87c90f87dfaa6d140e0

  • SHA512

    a530d2533ae761a183404130372c4b06514c06224f491cdc5c32694c355413531d29ccc56e2ca6d4b47442fb4ffb5457d5ce53ee89a2a6f4e2a9d5c0a4252de3

  • SSDEEP

    1536:h+sRWd4nhueU5u2s1N/47TVWeBeu644kPOLD38lKHPEryZ21uZjYCBA3MpM7c8uW:5sURE3VW8POLwlKb21uRYCuLMF6eFk

Score
10/10

Malware Config

Extracted

Family

plugx

C2

hdviet.tv-vn.com:8080

hdviet.tv-vn.com:8000

detail.misecure.com:443

detail.misecure.com:80

Mutex

Attributes
  • folder

    Microsoft Malware Protectionwhy

Signatures

  • Plugx family
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • ee233e16958768992086207345e84556_JaffaCakes118
    .dll windows:5 windows x86 arch:x86

    2d4775b7b89703e701e20d373dbc259e


    Headers

    Imports

    Exports

    Sections