General

  • Target

    ffaa59ed2d0babd9beed8effd2aca6e3_JaffaCakes118

  • Size

    2.1MB

  • MD5

    ffaa59ed2d0babd9beed8effd2aca6e3

  • SHA1

    efe5fb09fef712b9183a7e00545b5f44f82aaad4

  • SHA256

    16e82bd509cf326cc7b3239459f80196bdde1fb15cad21e03e48189e4e73f857

  • SHA512

    ec4b18c9fd1d383bdac95a10014f9c530eed1557ca09458a0a1cd01abec0b6f828723ec6f8d2bfa87f10c3d62a83ad440a447eb3cf27fd4462bb2c91a01cb949

  • SSDEEP

    49152:E+wHalRjR8jtO4y8NgvwrgRo5WDQgXufMsr:E+wHa1GtO8uorBYDQ2Ar

Score
3/10

Malware Config

Signatures

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

  • Unsigned PE 13 IoCs

    Checks for missing Authenticode signature.

Files

  • ffaa59ed2d0babd9beed8effd2aca6e3_JaffaCakes118
    .rar
  • taobao_qunfa_5.70/HtmlView.fne
    .dll windows:4 windows x86 arch:x86

    7cf927755417252449a422e31928491b


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/SkinH_EL.dll
    .dll windows:4 windows x86 arch:x86

    5b234a1aba7588c195b2279c948d550c


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/commobj.fne
    .dll windows:4 windows x86 arch:x86

    224f5ab43692f06b61f1b90ff21c22b1


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/eAPI.fne
    .dll windows:4 windows x86 arch:x86

    427eb39584a9f7cdf9555afee9d5ccff


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/iconv.fne
    .dll windows:4 windows x86 arch:x86

    12189ec61e2959d5ede384a32e53c43a


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/iext.fnr
    .dll windows:4 windows x86 arch:x86

    0e9f86f83fb5d6813b58d277e663a96f


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/iext2.fne
    .dll windows:4 windows x86 arch:x86

    a73b5b09a73efa33e8f16f44cfdc3da6


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/iext3.fne
    .dll windows:4 windows x86 arch:x86

    d06ca9724c3c6b11eb22944835d02ae1


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/iext5.fne
    .dll windows:4 windows x86 arch:x86

    4aa85b79d70fadaaacf99768203aa6ac


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/internet.fne
    .dll windows:4 windows x86 arch:x86

    a0ac47f87c51f127efa0e1a85fead828


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/isapi.fne
    .dll windows:4 windows x86 arch:x86

    9b0d371aac08d25ba3bc4f9364c691a8


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/krnln.fne
    .dll windows:4 windows x86 arch:x86

    1021c4a553644f3ae1cb67958917960d


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/krnln.fnr
    .dll windows:4 windows x86 arch:x86

    1021c4a553644f3ae1cb67958917960d


    Headers

    Imports

    Exports

    Sections

  • taobao_qunfa_5.70/skinh.she
  • taobao_qunfa_5.70/tbqunfa_2008&5.70.pdf
    .pdf
    • http://www.linksoft.cc

  • taobao_qunfa_5.70/新云软件.url
    .url