Overview

overview

8

Static

static

3

AutoSnap.exe

windows7-x64

1

AutoSnap.exe

windows10-2004-x64

1

Client/DeskSide.exe

windows7-x64

1

Client/DeskSide.exe

windows10-2004-x64

1

Client/Des...��.url

windows7-x64

1

Client/Des...��.url

windows10-2004-x64

1

Client/FAKEDISK.sys

windows7-x64

1

Client/FAKEDISK.sys

windows10-2004-x64

1

Client/IMA...Ƭ.url

windows7-x64

1

Client/IMA...Ƭ.url

windows10-2004-x64

1

Client/InsFilt.exe

windows7-x64

8

Client/InsFilt.exe

windows10-2004-x64

8

Client/NUpdate.exe

windows7-x64

1

Client/NUpdate.exe

windows10-2004-x64

1

Client/NoClose.dll

windows7-x64

1

Client/NoClose.dll

windows10-2004-x64

1

Client/SEBarClt.exe

windows7-x64

6

Client/SEBarClt.exe

windows10-2004-x64

6

Client/SEBarVD.dll

windows7-x64

6

Client/SEBarVD.dll

windows10-2004-x64

6

Client/SEIEBho.dll

windows7-x64

6

Client/SEIEBho.dll

windows10-2004-x64

6

Client/SExpMenu.exe

windows7-x64

3

Client/SExpMenu.exe

windows10-2004-x64

3

Client/SyncExp.exe

windows7-x64

1

Client/SyncExp.exe

windows10-2004-x64

1

Client/SyncExpSim.exe

windows7-x64

6

Client/SyncExpSim.exe

windows10-2004-x64

6

Client/board.rtf

windows7-x64

4

Client/board.rtf

windows10-2004-x64

1

Client/nQMailer.exe

windows7-x64

5

Client/nQMailer.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    658d0589624f939d0bf4e76a19033e51_JaffaCakes118

  • Size

    9.0MB

  • MD5

    658d0589624f939d0bf4e76a19033e51

  • SHA1

    534b72590ae3959d9f972b1ad794390ddc8d286e

  • SHA256

    47cf19204ed7b766915eaabdb2182d9b202f5eda072f9139e280557adfb1e86d

  • SHA512

    c824277b48348846a0122be352ee63d4498275615a2908fc8127fa5863e921ffe70ae963b4afc15465c9f01b9a0d9473658452fe60a53d0667706f712b53698c

  • SSDEEP

    196608:sh2NBX1Rn1N7WYHa8+UJPjSsu2RPtHzFrjfNzQYtUqB1:W2N5r1cYrhJPjSsuEHflzg+

Score
3/10

Malware Config

Signatures

  • Unsigned PE 28 IoCs

    Checks for missing Authenticode signature.

Files

  • 658d0589624f939d0bf4e76a19033e51_JaffaCakes118
    .zip
  • AutoSnap.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • BUPFLIST
  • Client/BatchRunʾ.ini
  • Client/Board.jpg
    .jpg
  • Client/Boards/Board.gif
    .gif
  • Client/Boards/Board1.jpg
    .jpg
  • Client/Boards/Board10.jpg
    .jpg
  • Client/Boards/Board11.jpg
    .jpg
  • Client/Boards/Board12.jpg
    .jpg
  • Client/Boards/Board13.jpg
    .jpg
  • Client/Boards/Board14.jpg
    .jpg
  • Client/Boards/Board15.jpg
    .jpg
  • Client/Boards/Board2.jpg
    .jpg
  • Client/Boards/Board3.jpg
    .jpg
  • Client/Boards/Board4.jpg
    .jpg
  • Client/Boards/Board5.jpg
    .jpg
  • Client/Boards/Board6.jpg
    .jpg
  • Client/Boards/Board7.jpg
    .jpg
  • Client/Boards/Board8.jpg
    .jpg
  • Client/Boards/Board9.jpg
    .jpg
  • Client/DeskSide.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • Client/DeskSide.ini
  • Client/DeskSideù.url
  • Client/Domains.dat
  • Client/FAKEDISK.SYS
    .sys windows:5 windows x86 arch:x86

    8b0f48d8bdba58ce73806c065674816c


    Headers

    Imports

    Sections

  • Client/IMAGES/DEFAULT.JPG
    .jpg
  • Client/IMAGES/QQ.JPG
    .jpg
  • Client/IMAGES/˵.txt
  • Client/IMAGES/.JPG
    .jpg
  • Client/IMAGES/ͼƬ.url
  • Client/IMAGES/.JPG
    .jpg
  • Client/IMAGES/.JPG
    .jpg
  • Client/IMAGES/.JPG
    .jpg
  • Client/IMAGES/Ѫ.JPG
    .jpg
  • Client/IPlist.dat
  • Client/Icons(ͼ)/A.ico
  • Client/Icons(ͼ)/Ӱ.ico
  • Client/Icons(ͼ)/Ӱ1.ico
  • Client/Icons(ͼ)/Ӱ2.ico
  • Client/Icons(ͼ)/Ӱ3.ico
  • Client/Icons(ͼ)/칫.ico
  • Client/Icons(ͼ)/Ϸ.ico
  • Client/Icons(ͼ)/Ϸ2.ico
  • Client/Icons(ͼ)/Ϸ3.ico
  • Client/Icons(ͼ)/սƽ̨.ico
  • Client/Icons(ͼ)/սƽ̨1.ico
  • Client/Icons(ͼ)/.ico
  • Client/Icons(ͼ)/1.ico
  • Client/Icons(ͼ)/.ico
  • Client/Icons(ͼ)/Ϸ.ico
  • Client/Icons(ͼ)/Ϸ1.ico
  • Client/Icons(ͼ)/Ϸ.ico
  • Client/Icons(ͼ)/Ϸ.ico
  • Client/Icons(ͼ)/Ϸ1.ico
  • Client/Icons(ͼ)/.ico
  • Client/Icons(ͼ)/1.ico
  • Client/Icons(ͼ)/2.ico
  • Client/InsFilt.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • Client/Locker.jpg
    .jpg
  • Client/Mac2Host.ini
  • Client/NUpdate.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • Client/NoClose.dll
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • Client/PNG/EXIT.png
    .png
  • Client/PNG/FACE.png
    .png
  • Client/PNG/HOT.png
    .png
  • Client/PNG/IE.png
    .png
  • Client/PNG/LOCKER.png
    .png
  • Client/PNG/MOUSE.png
    .png
  • Client/PNG/MUSIC.png
    .png
  • Client/PNG/NEW.png
    .png
  • Client/PNG/NEW1.png
    .png
  • Client/PNG/QQ.png
    .png
  • Client/PNG/SCREEN.png
    .png
  • Client/PNG/SEARCH.png
    .png
  • Client/PNG/SEARCH20.png
    .png
  • Client/PNG/VOLUME.png
    .png
  • Client/PNG/칫.png
    .png
  • Client/PNG/칫1.png
    .png
  • Client/PNG/Ϸ.png
    .png
  • Client/PNG/Ӱ.png
    .png
  • Client/PNG/սƽ̨.png
    .png
  • Client/PNG/.png
    .png
  • Client/PNG/콻.png
    .png
  • Client/PNG/Ϸ.png
    .png
  • Client/PNG/Ϸ.png
    .png
  • Client/PNGs/EXIT.png
    .png
  • Client/PNGs/FACE.png
    .png
  • Client/PNGs/HOT.png
    .png
  • Client/PNGs/IE.png
    .png
  • Client/PNGs/LOCKER.png
    .png
  • Client/PNGs/MOUSE.png
    .png
  • Client/PNGs/MUSIC.png
    .png
  • Client/PNGs/QQ.png
    .png
  • Client/PNGs/SCREEN.png
    .png
  • Client/PNGs/SEARCH.png
    .png
  • Client/PNGs/VOLUME.png
    .png
  • Client/PNGs/칫.png
    .png
  • Client/PNGs/칫1.png
    .png
  • Client/PNGs/Ϸ.png
    .png
  • Client/PNGs/Ӱ.png
    .png
  • Client/PNGs/սƽ̨.png
    .png
  • Client/PNGs/.png
    .png
  • Client/PNGs/콻.png
    .png
  • Client/PNGs/Ϸ.png
    .png
  • Client/PNGs/Ϸ.png
    .png
  • Client/PNG˵.txt
  • Client/SEBarClt.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • Client/SEBarVD.DLL
    .dll windows:4 windows x86 arch:x86

    09008ffc464058cc25d1c6903107efff


    Headers

    Imports

    Exports

    Sections

  • Client/SEIEBho.dll
    .dll regsvr32 windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • Client/SExpMenu.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • Client/SyncExp.db1
  • Client/SyncExp.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • Client/SyncExp1.cfg
  • Client/SyncExp1.db
  • Client/SyncExpSim.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • Client/back.jpg
    .jpg
  • Client/board.rtf
    .rtf
  • Client/click.wav
  • Client/ding.wav
  • Client/faces/2k8black.fac
  • Client/faces/2k8deepblue.fac
  • Client/faces/2k8khaki.fac
  • Client/faces/2k8pureblue.fac
  • Client/faces/2k8sexpblue.fac
  • Client/faces/2k8tinyblue.fac
  • Client/faces/2k8tmblue.fac
  • Client/faces/2k9black.fac
  • Client/faces/2k9stdblue.fac
  • Client/faces/2k9stdgreen.fac
  • Client/faces/2k9stdpurple.fac
  • Client/faces/2k9stdred.fac
  • Client/faces/2k9stdyellow.fac
  • Client/faces/jjsexparg.fac
  • Client/faces/jjsexpblue.fac
  • Client/faces/jjsexpbluei.fac
  • Client/faces/jjsexpdark.fac
  • Client/faces/jjsexpdat0.fac
  • Client/faces/jjsexpemp.fac
  • Client/faces/jjsexpgren.fac
  • Client/faces/jjsexppurp.fac
  • Client/faces/jjsexpstd.fac
  • Client/faces/lx2sexpblueh.fac
  • Client/faces/lx2sexpmac.fac
  • Client/faces/lx2sexpsola.fac
  • Client/faces/lx2sexpvist.fac
  • Client/faces/lx2tradition.fac
  • Client/faces/lxsexpblue.fac
  • Client/faces/lxsexpblueg.fac
  • Client/faces/lxsexpblueh.fac
  • Client/faces/lxsexpmac.fac
  • Client/faces/lxsexpmsn.fac
  • Client/faces/lxsexpsky.fac
  • Client/faces/lxsexpsola.fac
  • Client/faces/lxsexpsteel.fac
  • Client/faces/lxsexpstel.fac
  • Client/faces/lxsexpvist.fac
  • Client/faces/ptsexparg.fac
  • Client/faces/ptsexpblue.fac
  • Client/faces/ptsexpdark.fac
  • Client/faces/ptsexpdat0.fac
  • Client/faces/ptsexpemp.fac
  • Client/faces/ptsexpgren.fac
  • Client/faces/ptsexppurp.fac
  • Client/faces/ptsexpsnow.fac
  • Client/faces/ptsexpstd.fac
  • Client/gDefine
  • Client/gDefine1
  • Client/nQMailer.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • Client/seipdrv.sys
    .sys windows:5 windows x86 arch:x86

    0d83f5d9952ef4e8dd7ed48d444e7253


    Headers

    Imports

    Sections

  • Client/ģ/ģ1.bmp
  • Client/ģ/ģ2.bmp
  • Client/ģ/ģ3.bmp
  • Client/ģ/ģ4.bmp
  • Client/ģ/ģ5.bmp
  • Client/ģ/ģ6.bmp
  • Client/ģ/ģa[8].bmp
  • Client/ģ/ģb[8].bmp
  • Client/ģ/ģc[8].bmp
  • Client/ͻͼ.zip
    .zip
  • clttray.ico
  • Client/ͻע.zip
    .zip
  • CPUԿ±.REG
  • CPUԿ¹ػ.REG
  • Language(ѡ).reg
  • ȥָʾͷ.reg
  • ɱΣս̡Υ⼰P2Pʱͻʾ.reg
  • ʹõ.reg
  • ָPINGIP,IPPINGͨ(ֻһ,Ϊձʾʹøù).reg
  • ָQQļм¼QQķ.reg
  • رIEʷ֮ʱ.reg
  • InsHost.dll.REG
  • 鸴߲˵ٶ(ijЩ״¿ٶȷܵ).reg
  • ɢ⹲£ͻͬʱɷѹ.reg
  • CRCļĿ¼.reg
  • Ӱٶ.reg
  • ֹʹUSBƶ洢豸.reg
  • ֹעϵͳ(ע).reg
  • ֹ˵ͬʱ¶Ϸ(SyncExpSim).reg
  • ļ.reg
  • ͻ˷ɱ(ֹͻ).reg
  • ͻָļͻˡ²˵õ.reg
  • ͼƬ.reg
  • ӳ20пͻ(SEBarClt).reg
  • ַʱʾ.reg
  • ϴٶ(ǧ).reg
  • ϴٶ().reg
  • ϴ޴(ȫ).reg
  • ϴ޴().reg
  • ϴٶ(ǧ).reg
  • ϴٶ().reg
  • ÿԶµӳʱΪ8.reg
  • IEʷ¼(ұ߷д).reg
  • ARPͻʱʾʾϢ.reg
  • Σս̶ʱʾʾϢ.reg
  • Ϸ˵Զͼ(10).reg
  • ʹUSBƶ洢豸.reg
  • Ϸ˵ظ.reg
  • ԶUʾ.reg
  • DPת湤.url
  • Day/ǿɳ.gif
    .gif
  • Day/ɳ.gif
    .gif
  • Day/Сѩ-ѩ.gif
    .gif
  • Day/Сѩ.gif
    .gif
  • Day/Сѩ.gif
    .gif
  • Day/С.gif
    .gif
  • Day/С-.gif
    .gif
  • Day/С.gif
    .gif
  • Day/ѩ.gif
    .gif
  • Day/-.gif
    .gif
  • Day/.gif
    .gif
  • Day/ѩ-ѩ.gif
    .gif
  • Day/ѩ.gif
    .gif
  • Day/-ش.gif
    .gif
  • Day/.gif
    .gif
  • Day/-.gif
    .gif
  • Day/.gif
    .gif
  • Day/󵽱ѩ.gif
    .gif
  • Day/󵽱.gif
    .gif
  • Day/.gif
    .gif
  • Day/.gif
    .gif
  • Day/.gif
    .gif
  • Day/.gif
    .gif
  • Day/б.gif
    .gif
  • Day/.gif
    .gif
  • Day/ش.gif
    .gif
  • Day/.gif
    .gif
  • Day/ɳ.gif
    .gif
  • Day/.gif
    .gif
  • Day/ѩ.gif
    .gif
  • Day/ѩ.gif
    .gif
  • Day/.gif
    .gif
  • Day/еѩ.gif
    .gif
  • Day/е.gif
    .gif
  • Day/ѩ-ѩ.gif
    .gif
  • Day/ѩ.gif
    .gif
  • Day/-.gif
    .gif
  • Day/.gif
    .gif
  • DevInfo/DevView.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • DevInfo/˵.TXT
  • Help()/1ע.url
    .url
  • Help()/2װ˵.url
    .url
  • Help()/3˵Ƶ.url
  • Help()/4ԭ.url
  • Help()/5߽̳.url
  • Help()/6˵Ƥб.url
  • Help()/readme.txt
  • Help()/Ƶ.url
  • Help()/Ϸ˵˵.txt
  • Help()/Ϸ˵ͼʾ1.gif
    .gif
  • Help()/Ϸ˵ͼʾ2.gif
    .gif
  • Help()/Ϸ˵ͼʾ3.gif
    .gif
  • HookDll.dl
    .dll windows:1 windows x86 arch:x86

    215083a45fe1a2a3760d5acbd6821d20


    Headers

    Imports

    Exports

    Sections

  • IEViewer.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • LimitIP.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • LimitURL.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • LiveUpdate.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • LockList.txt
  • NTFSys.dl
    .dll windows:4 windows x86 arch:x86

    09d0478591d4f788cb3e5ea416c25237


    Headers

    Imports

    Exports

    Sections

  • NetSet.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • NewFace2.dl
    .dll windows:1 windows x86 arch:x86

    6c3a4082b1117accfed009d2c13f3d7a


    Headers

    Imports

    Exports

    Sections

  • Night/ǿɳ.gif
    .gif
  • Night/ɳ.gif
    .gif
  • Night/Сѩ-ѩ.gif
    .gif
  • Night/Сѩ.gif
    .gif
  • Night/Сѩ.gif
    .gif
  • Night/С.gif
    .gif
  • Night/С-.gif
    .gif
  • Night/С.gif
    .gif
  • Night/ѩ.gif
    .gif
  • Night/-.gif
    .gif
  • Night/.gif
    .gif
  • Night/ѩ-ѩ.gif
    .gif
  • Night/ѩ.gif
    .gif
  • Night/-ش.gif
    .gif
  • Night/.gif
    .gif
  • Night/-.gif
    .gif
  • Night/.gif
    .gif
  • Night/󵽱ѩ.gif
    .gif
  • Night/󵽱.gif
    .gif
  • Night/.gif
    .gif
  • Night/.gif
    .gif
  • Night/.gif
    .gif
  • Night/.gif
    .gif
  • Night/б.gif
    .gif
  • Night/.gif
    .gif
  • Night/ش.gif
    .gif
  • Night/.gif
    .gif
  • Night/ɳ.gif
    .gif
  • Night/.gif
    .gif
  • Night/ѩ.gif
    .gif
  • Night/ѩ.gif
    .gif
  • Night/.gif
    .gif
  • Night/еѩ.gif
    .gif
  • Night/е.gif
    .gif
  • Night/ѩ-ѩ.gif
    .gif
  • Night/ѩ.gif
    .gif
  • Night/-.gif
    .gif
  • Night/.gif
    .gif
  • PinYin.dl
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • SEBarSvr.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • ViewClick.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • Wavs/0.wav
  • Wavs/1.wav
  • Wavs/2.wav
  • Wavs/3.wav
  • Wavs/4.wav
  • Wavs/5.wav
  • Wavs/6.wav
  • Wavs/7.wav
  • Wavs/8.wav
  • Wavs/9.wav
  • Wavs/A.wav
  • Wavs/B.wav
  • Wavs/C.wav
  • Wavs/D.wav
  • Wavs/E.wav
  • Wavs/F.wav
  • Wavs/G.wav
  • Wavs/H.wav
  • Wavs/I.wav
  • Wavs/J.wav
  • Wavs/K.wav
  • Wavs/L.wav
  • Wavs/M.wav
  • Wavs/N.wav
  • Wavs/O.wav
  • Wavs/P.wav
  • Wavs/Q.wav
  • Wavs/R.wav
  • Wavs/S.wav
  • Wavs/T.wav
  • Wavs/U.wav
  • Wavs/V.wav
  • Wavs/W.wav
  • Wavs/X.wav
  • Wavs/Y.wav
  • Wavs/Z.wav
  • Wavs/bell.wav
  • Wavs/calladm.wav
  • Weather.dl
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • httpget.dl
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • zoomcur
  • װǰض(GuideOfInstall).doc
    .doc windows office2003
  • װ(InstallServer).bat
    .bat .vbs
  • װͻ(InstallClient).bat
    .bat .vbs
  • ע.zip
    .zip
  • ()ÿͻ˵µȨ֤.reg
  • CRCļĿ¼(ɾCRC).reg
  • Language(ѡ).reg
  • Զ滭.reg
  • ʾģʽ.reg
  • .reg
  • ͻʹõ.reg
  • ӳ20з(SEBarSvr).reg
  • ȡַ.reg
  • ƶ.reg
  • (ֱӵ).txt
  • Ҫļ.htm
    .html