General
-
Target
f4237f22e131216fc80bd6038ad92642_JaffaCakes118
-
Size
1.8MB
-
MD5
f4237f22e131216fc80bd6038ad92642
-
SHA1
8573f56d0b8f0734820257a4be4529ff5ef90041
-
SHA256
fbd4e06219737ce801ecf9c15c10df19d60fcacbc73d7ecf54d21bd13839b73d
-
SHA512
949d65fd77d68477ac932c00c5484aedf8dfa8ba92eecf91c8fcac33a456c29bbbbbd76d361ff93a4996c4d3a5502b32cc009dfe71d5dca1267c0d74b9f52e36
-
SSDEEP
49152:sdmKWu4tsgTAcDdCYcbWFmCdEK9Hn5blOn8:fFu4tLLAn61dv9Hnfd
Score
7/10
Malware Config
Signatures
-
UPX packed file 2 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 4 IoCs
Checks for missing Authenticode signature.
Files
-
f4237f22e131216fc80bd6038ad92642_JaffaCakes118
-
FluxVerify[x32].exe
2c5f2513605e48f2d8ea5440a870cb9e
Headers
Imports
Sections
-
FluxVerify[x64].exe
f326f88ca83c9aacaa44acfb8884f1d4
Headers
Imports
Sections
-
Libloader[gui]v3.exe
Headers
Sections
-
WebContent.exe
Headers
Sections
-
cfgBuilderv3.json
-
database/ummi_db.json
-
database/v1.class
-
node_modules/.bin/mime
-
node_modules/.bin/mime.cmd
-
node_modules/.bin/mime.ps1
-
node_modules/accepts/HISTORY.md
-
node_modules/accepts/LICENSE
-
node_modules/accepts/README.md
-
node_modules/accepts/index.js
-
node_modules/accepts/package.json
-
node_modules/array-flatten/LICENSE
-
node_modules/array-flatten/README.md
-
node_modules/array-flatten/array-flatten.js
-
node_modules/array-flatten/package.json
-
node_modules/body-parser/HISTORY.md
-
node_modules/body-parser/LICENSE
-
node_modules/body-parser/README.md
-
node_modules/body-parser/index.js
-
node_modules/body-parser/lib/read.js
-
node_modules/body-parser/lib/types/json.js
-
node_modules/body-parser/lib/types/raw.js
-
node_modules/body-parser/lib/types/text.js
-
node_modules/body-parser/lib/types/urlencoded.js
-
node_modules/body-parser/package.json
-
node_modules/bytes/History.md
-
node_modules/bytes/LICENSE
-
node_modules/bytes/Readme.md
-
node_modules/bytes/index.js
-
node_modules/bytes/package.json
-
node_modules/console-title/README.md
-
node_modules/console-title/package.json
-
node_modules/console-title/rename.js
-
node_modules/content-disposition/HISTORY.md
-
node_modules/content-disposition/LICENSE
-
node_modules/content-disposition/README.md
-
node_modules/content-disposition/index.js
-
node_modules/content-disposition/package.json
-
node_modules/content-type/HISTORY.md
-
node_modules/content-type/LICENSE
-
node_modules/content-type/README.md
-
node_modules/content-type/index.js
-
node_modules/content-type/package.json
-
node_modules/cookie-signature/.npmignore
-
node_modules/cookie-signature/History.md
-
node_modules/cookie-signature/Readme.md
-
node_modules/cookie-signature/index.js
-
node_modules/cookie-signature/package.json
-
node_modules/cookie/HISTORY.md
-
node_modules/cookie/LICENSE
-
node_modules/cookie/README.md
-
node_modules/cookie/index.js
-
node_modules/cookie/package.json
-
node_modules/cors/CONTRIBUTING.md
-
node_modules/cors/HISTORY.md
-
node_modules/cors/LICENSE
-
node_modules/cors/README.md
-
node_modules/cors/lib/index.js
-
node_modules/cors/package.json
-
node_modules/debug/.coveralls.yml
-
node_modules/debug/.eslintrc
-
node_modules/debug/.npmignore
-
node_modules/debug/.travis.yml
-
node_modules/debug/CHANGELOG.md
-
node_modules/debug/LICENSE
-
node_modules/debug/Makefile
-
node_modules/debug/README.md
-
node_modules/debug/component.json
-
node_modules/debug/karma.conf.js
-
node_modules/debug/node.js
-
node_modules/debug/package.json
-
node_modules/debug/src/browser.js
-
node_modules/debug/src/debug.js
-
node_modules/debug/src/index.js
-
node_modules/debug/src/inspector-log.js
-
node_modules/debug/src/node.js
-
node_modules/depd/History.md
-
node_modules/depd/LICENSE
-
node_modules/depd/Readme.md
-
node_modules/depd/index.js
-
node_modules/depd/lib/browser/index.js
-
node_modules/depd/lib/compat/callsite-tostring.js
-
node_modules/depd/lib/compat/event-listener-count.js
-
node_modules/depd/lib/compat/index.js
-
node_modules/depd/package.json
-
node_modules/destroy/LICENSE
-
node_modules/destroy/README.md
-
node_modules/destroy/index.js
-
node_modules/destroy/package.json
-
node_modules/ee-first/LICENSE
-
node_modules/ee-first/README.md
-
node_modules/ee-first/index.js
-
node_modules/ee-first/package.json
-
node_modules/encodeurl/HISTORY.md
-
node_modules/encodeurl/LICENSE
-
node_modules/encodeurl/README.md
-
node_modules/encodeurl/index.js
-
node_modules/encodeurl/package.json
-
node_modules/escape-html/LICENSE
-
node_modules/escape-html/Readme.md
-
node_modules/escape-html/index.js
-
node_modules/escape-html/package.json
-
node_modules/etag/HISTORY.md
-
node_modules/etag/LICENSE
-
node_modules/etag/README.md
-
node_modules/etag/index.js
-
node_modules/etag/package.json
-
node_modules/express/History.md
-
node_modules/express/LICENSE
-
node_modules/express/Readme.md
-
node_modules/express/index.js
-
node_modules/express/lib/application.js
-
node_modules/express/lib/express.js
-
node_modules/express/lib/middleware/init.js
-
node_modules/express/lib/middleware/query.js
-
node_modules/express/lib/request.js
-
node_modules/express/lib/response.js
-
node_modules/express/lib/router/index.js
-
node_modules/express/lib/router/layer.js
-
node_modules/express/lib/router/route.js
-
node_modules/express/lib/utils.js
-
node_modules/express/lib/view.js
-
node_modules/express/package.json
-
node_modules/finalhandler/HISTORY.md
-
node_modules/finalhandler/LICENSE
-
node_modules/finalhandler/README.md
-
node_modules/finalhandler/index.js
-
node_modules/finalhandler/package.json
-
node_modules/forwarded/HISTORY.md
-
node_modules/forwarded/LICENSE
-
node_modules/forwarded/README.md
-
node_modules/forwarded/index.js
-
node_modules/forwarded/package.json
-
node_modules/fresh/HISTORY.md
-
node_modules/fresh/LICENSE
-
node_modules/fresh/README.md
-
node_modules/fresh/index.js
-
node_modules/fresh/package.json
-
node_modules/http-errors/HISTORY.md
-
node_modules/http-errors/LICENSE
-
node_modules/http-errors/README.md
-
node_modules/http-errors/index.js
-
node_modules/http-errors/package.json
-
node_modules/iconv-lite/Changelog.md
-
node_modules/iconv-lite/LICENSE
-
node_modules/iconv-lite/README.md
-
node_modules/iconv-lite/encodings/dbcs-codec.js
-
node_modules/iconv-lite/encodings/dbcs-data.js
-
node_modules/iconv-lite/encodings/index.js
-
node_modules/iconv-lite/encodings/internal.js
-
node_modules/iconv-lite/encodings/sbcs-codec.js
-
node_modules/iconv-lite/encodings/sbcs-data-generated.js
-
node_modules/iconv-lite/encodings/sbcs-data.js
-
node_modules/iconv-lite/encodings/tables/big5-added.json
-
node_modules/iconv-lite/encodings/tables/cp936.json
-
node_modules/iconv-lite/encodings/tables/cp949.json
-
node_modules/iconv-lite/encodings/tables/cp950.json
-
node_modules/iconv-lite/encodings/tables/eucjp.json
-
node_modules/iconv-lite/encodings/tables/gb18030-ranges.json
-
node_modules/iconv-lite/encodings/tables/gbk-added.json
-
node_modules/iconv-lite/encodings/tables/shiftjis.json
-
node_modules/iconv-lite/encodings/utf16.js
-
node_modules/iconv-lite/encodings/utf7.js
-
node_modules/iconv-lite/lib/bom-handling.js
-
node_modules/iconv-lite/lib/extend-node.js
-
node_modules/iconv-lite/lib/index.d.ts
-
node_modules/iconv-lite/lib/index.js
-
node_modules/iconv-lite/lib/streams.js
-
node_modules/iconv-lite/package.json
-
node_modules/inherits/LICENSE
-
node_modules/inherits/README.md
-
node_modules/inherits/inherits.js
-
node_modules/inherits/inherits_browser.js
-
node_modules/inherits/package.json
-
node_modules/ipaddr.js/LICENSE
-
node_modules/ipaddr.js/README.md
-
node_modules/ipaddr.js/ipaddr.min.js
-
node_modules/ipaddr.js/lib/ipaddr.js
-
node_modules/ipaddr.js/lib/ipaddr.js.d.ts
-
node_modules/ipaddr.js/package.json
-
node_modules/media-typer/HISTORY.md
-
node_modules/media-typer/LICENSE
-
node_modules/media-typer/README.md
-
node_modules/media-typer/index.js
-
node_modules/media-typer/package.json
-
node_modules/merge-descriptors/HISTORY.md
-
node_modules/merge-descriptors/LICENSE
-
node_modules/merge-descriptors/README.md
-
node_modules/merge-descriptors/index.js
-
node_modules/merge-descriptors/package.json
-
node_modules/methods/HISTORY.md
-
node_modules/methods/LICENSE
-
node_modules/methods/README.md
-
node_modules/methods/index.js
-
node_modules/methods/package.json
-
node_modules/mime-db/HISTORY.md
-
node_modules/mime-db/LICENSE
-
node_modules/mime-db/README.md
-
node_modules/mime-db/db.json
-
node_modules/mime-db/index.js
-
node_modules/mime-db/package.json
-
node_modules/mime-types/HISTORY.md
-
node_modules/mime-types/LICENSE
-
node_modules/mime-types/README.md
-
node_modules/mime-types/index.js
-
node_modules/mime-types/package.json
-
node_modules/mime/CHANGELOG.md
-
node_modules/mime/LICENSE
-
node_modules/mime/README.md
-
node_modules/mime/cli.js
-
node_modules/mime/mime.js
-
node_modules/mime/package.json
-
node_modules/mime/src/build.js
-
node_modules/mime/src/test.js
-
node_modules/mime/types.json
-
node_modules/ms/index.js
-
node_modules/ms/license.md
-
node_modules/ms/package.json
-
node_modules/ms/readme.md
-
node_modules/negotiator/HISTORY.md
-
node_modules/negotiator/LICENSE
-
node_modules/negotiator/README.md
-
node_modules/negotiator/index.js
-
node_modules/negotiator/lib/charset.js
-
node_modules/negotiator/lib/encoding.js
-
node_modules/negotiator/lib/language.js
-
node_modules/negotiator/lib/mediaType.js
-
node_modules/negotiator/package.json
-
node_modules/node-fetch/CHANGELOG.md
-
node_modules/node-fetch/LICENSE.md
-
node_modules/node-fetch/README.md
-
node_modules/node-fetch/browser.js
-
node_modules/node-fetch/lib/index.es.js
-
node_modules/node-fetch/lib/index.js
-
node_modules/node-fetch/lib/index.mjs
-
node_modules/node-fetch/package.json
-
node_modules/object-assign/index.js
-
node_modules/object-assign/license
-
node_modules/object-assign/package.json
-
node_modules/object-assign/readme.md
-
node_modules/on-finished/HISTORY.md
-
node_modules/on-finished/LICENSE
-
node_modules/on-finished/README.md
-
node_modules/on-finished/index.js
-
node_modules/on-finished/package.json
-
node_modules/os/README.md
-
node_modules/os/index.js
-
node_modules/os/package.json
-
node_modules/parseurl/HISTORY.md
-
node_modules/parseurl/LICENSE
-
node_modules/parseurl/README.md
-
node_modules/parseurl/index.js
-
node_modules/parseurl/package.json
-
node_modules/path-to-regexp/History.md
-
node_modules/path-to-regexp/LICENSE
-
node_modules/path-to-regexp/Readme.md
-
node_modules/path-to-regexp/index.js
-
node_modules/path-to-regexp/package.json
-
node_modules/proxy-addr/HISTORY.md
-
node_modules/proxy-addr/LICENSE
-
node_modules/proxy-addr/README.md
-
node_modules/proxy-addr/index.js
-
node_modules/proxy-addr/package.json
-
node_modules/qs/.editorconfig
-
node_modules/qs/.eslintignore
-
node_modules/qs/.eslintrc
-
node_modules/qs/CHANGELOG.md
-
node_modules/qs/LICENSE
-
node_modules/qs/README.md
-
node_modules/qs/dist/qs.js
-
node_modules/qs/lib/formats.js
-
node_modules/qs/lib/index.js
-
node_modules/qs/lib/parse.js
-
node_modules/qs/lib/stringify.js
-
node_modules/qs/lib/utils.js
-
node_modules/qs/package.json
-
node_modules/qs/test/.eslintrc
-
node_modules/qs/test/index.js
-
node_modules/qs/test/parse.js
-
node_modules/qs/test/stringify.js
-
node_modules/qs/test/utils.js
-
node_modules/range-parser/HISTORY.md
-
node_modules/range-parser/LICENSE
-
node_modules/range-parser/README.md
-
node_modules/range-parser/index.js
-
node_modules/range-parser/package.json
-
node_modules/raw-body/HISTORY.md
-
node_modules/raw-body/LICENSE
-
node_modules/raw-body/README.md
-
node_modules/raw-body/index.d.ts
-
node_modules/raw-body/index.js
-
node_modules/raw-body/package.json
-
node_modules/readline/.npmignore
-
node_modules/readline/README.md
-
node_modules/readline/package.json
-
node_modules/readline/readline.js
-
node_modules/readline/test/fixtures/afile.txt
-
node_modules/readline/test/fixtures/file-in-win1251.txt
-
node_modules/readline/test/fixtures/nmbr.txt
-
node_modules/readline/test/test_readline.js
-
node_modules/safe-buffer/LICENSE
-
node_modules/safe-buffer/README.md
-
node_modules/safe-buffer/index.d.ts
-
node_modules/safe-buffer/index.js
-
node_modules/safe-buffer/package.json
-
node_modules/safer-buffer/LICENSE
-
node_modules/safer-buffer/Porting-Buffer.md
-
node_modules/safer-buffer/Readme.md
-
node_modules/safer-buffer/dangerous.js
-
node_modules/safer-buffer/package.json
-
node_modules/safer-buffer/safer.js
-
node_modules/safer-buffer/tests.js
-
node_modules/send/HISTORY.md
-
node_modules/send/LICENSE
-
node_modules/send/README.md
-
node_modules/send/index.js
-
node_modules/send/node_modules/ms/index.js
-
node_modules/send/node_modules/ms/license.md
-
node_modules/send/node_modules/ms/package.json
-
node_modules/send/node_modules/ms/readme.md
-
node_modules/send/package.json
-
node_modules/serve-static/HISTORY.md
-
node_modules/serve-static/LICENSE
-
node_modules/serve-static/README.md
-
node_modules/serve-static/index.js
-
node_modules/serve-static/package.json
-
node_modules/setprototypeof/LICENSE
-
node_modules/setprototypeof/README.md
-
node_modules/setprototypeof/index.d.ts
-
node_modules/setprototypeof/index.js
-
node_modules/setprototypeof/package.json
-
node_modules/setprototypeof/test/index.js
-
node_modules/snekfetch/.eslintrc.json
-
node_modules/snekfetch/.github/ISSUE_TEMPLATE.md
-
node_modules/snekfetch/.github/PULL_REQUEST_TEMPLATE.md
-
node_modules/snekfetch/.travis.yml
-
node_modules/snekfetch/CODE_OF_CONDUCT.md
-
node_modules/snekfetch/CONTRIBUTING.md
-
node_modules/snekfetch/LICENSE
-
node_modules/snekfetch/README.md
-
node_modules/snekfetch/browser.js
-
node_modules/snekfetch/docs.js
-
node_modules/snekfetch/esm.mjs
-
node_modules/snekfetch/index.js
-
node_modules/snekfetch/package.json
-
node_modules/snekfetch/scripts/travis-deploy.sh
-
node_modules/snekfetch/scripts/travis-test.sh
-
node_modules/snekfetch/src/browser.js
-
node_modules/snekfetch/src/index.js
-
node_modules/snekfetch/src/node/FormData.js
-
node_modules/snekfetch/src/node/index.js
-
node_modules/snekfetch/src/node/mime.js
-
node_modules/snekfetch/src/node/mimeOfBuffer.js
-
node_modules/snekfetch/src/node/mimes.json
-
node_modules/snekfetch/src/node/transports/ResponseStream.js
-
node_modules/snekfetch/src/node/transports/file.js
-
node_modules/snekfetch/src/node/transports/http2.js
-
node_modules/snekfetch/src/qs_mock.js
-
node_modules/snekfetch/sync.js
-
node_modules/snekfetch/test/.eslintrc.json
-
node_modules/snekfetch/test/browser/http1.test.js
-
node_modules/snekfetch/test/browser/http2.test.js
-
node_modules/snekfetch/test/browser/main.js
-
node_modules/snekfetch/test/interop.js
-
node_modules/snekfetch/test/main.js
-
node_modules/snekfetch/test/node/file.test.js
-
node_modules/snekfetch/test/node/http1.test.js
-
node_modules/snekfetch/test/node/http2.test.js.disabled
-
node_modules/snekfetch/test/node/main.js
-
node_modules/snekfetch/test/node/sync.test.js
-
node_modules/snekfetch/test/node/util.test.js
-
node_modules/snekfetch/test/server.js
-
node_modules/snekfetch/webpack.config.js
-
node_modules/statuses/HISTORY.md
-
node_modules/statuses/LICENSE
-
node_modules/statuses/README.md
-
node_modules/statuses/codes.json
-
node_modules/statuses/index.js
-
node_modules/statuses/package.json
-
node_modules/toidentifier/LICENSE
-
node_modules/toidentifier/README.md
-
node_modules/toidentifier/index.js
-
node_modules/toidentifier/package.json
-
node_modules/type-is/HISTORY.md
-
node_modules/type-is/LICENSE
-
node_modules/type-is/README.md
-
node_modules/type-is/index.js
-
node_modules/type-is/package.json
-
node_modules/unpipe/HISTORY.md
-
node_modules/unpipe/LICENSE
-
node_modules/unpipe/README.md
-
node_modules/unpipe/index.js
-
node_modules/unpipe/package.json
-
node_modules/utils-merge/.npmignore
-
node_modules/utils-merge/LICENSE
-
node_modules/utils-merge/README.md
-
node_modules/utils-merge/index.js
-
node_modules/utils-merge/package.json
-
node_modules/vary/HISTORY.md
-
node_modules/vary/LICENSE
-
node_modules/vary/README.md
-
node_modules/vary/index.js
-
node_modules/vary/package.json
-
package-lock.json
-
src/Alo.V$oOo_oOo/$CFG.cfg
-
src/Alo.V$oOo_oOo/$TEMP/$TEMP_RAW.js
-
src/Alo.V$oOo_oOo/$TEMP/0fffff0f0ff0f0f0f0ff00fff.txt
-
src/Alo.V$oOo_oOo/$TEMP/0xc362jI6.AloLog
-
src/Alo.V$oOo_oOo/$TEMP/1f1f1ff1f1f1f1f1f1f1f.txt
-
src/Alo.V$oOo_oOo/$TEMP/dDdDdDdDdDd.txt
-
src/Alo.V$oOo_oOo/$TEMP/pasted.txt
-
src/Alo.generators/antic.js
-
src/Alo.generators/engine.js
-
src/Alo.generators/exotic.js
-
src/Alo.generators/extractData.js
-
src/Alo.libs/UPDATE.js
-
src/Alo.libs/alo.js
-
src/Alo.libs/events.json
-
src/Alo.libs/languages.js
-
src/Alo.libs/packager.json
-
src/Alo.pre-initializators/Alo.initializtor.js
-
src/Alo.pre-initializators/Alo.lib-1.0.0.js
-
src/Alo.pre-initializators/Alo.script-1.0.0.js
-
src/Alo.pre-initializators/minify[min-v1.3].js
-
src/Launcher/$theme.json
-
src/Launcher/raw.js
-
src/Launcher/types/dynast.io/v1.js
-
src/Launcher/types/starve.io/v1.1.js
-
src/flowers.js
-
src/java.erc/0.class
-
src/java.erc/1.class
-
src/java.erc/2.class
-
src/java.erc/key_ummi.class
-
src/java.erc/launcher_https_agent.class
-
src/java.erc/launcher_load.class
-
src/java.erc/ummi.class
-
src/java.erc/utils_ummi.class
-
src/main.js
-
src/package_numberic.js
-
src/senders/pasted.js
-
src/senders/purge.js