General
-
Target
6677f79b02b931d2cd79b87f78bfcfbb_JaffaCakes118
-
Size
30.8MB
-
MD5
6677f79b02b931d2cd79b87f78bfcfbb
-
SHA1
8e6be2656fb3be42e3ac646e6346886935b3d2b4
-
SHA256
8ebd1b8741900582b4c72acf34988c2817d62a0756a4a21875c68dfe8714e482
-
SHA512
cb4ae791dd3cb61342918403c9659fd1b7ffa7e7eac7928ec39c503201fd2682fe97e7e5763fd7fee9eb092dafc40d0b637d5fc847e694a3146217167dbd2d70
-
SSDEEP
786432:cWOm6mEHrMgJFVncVv/O0ry/khP41Q7/UBS:cWLwLH41tl75
Score
7/10
Malware Config
Signatures
-
UPX packed file 1 IoCs
Detects executables packed with UPX/modified UPX open source packer.
-
Unsigned PE 3 IoCs
Checks for missing Authenticode signature.
Files
-
6677f79b02b931d2cd79b87f78bfcfbb_JaffaCakes118
-
bin/admin.bat
-
bin/instsvc.bat
-
bin/ping.bat
-
bin/ping.sh
-
bin/reset-acl.bat
-
bin/reset-acl.sh
-
bin/reset-pw.bat
-
bin/reset-pw.sh
-
bin/shutdown.bat
-
bin/shutdown.sh
-
bin/startup.bat
-
bin/startup.sh
-
bin/tutorial.bat
-
bin/unstsvc.bat
-
conf/appname
-
conf/biglist.ver
-
conf/cfg.default
-
conf/komodia.map
-
conf/log4j.default
-
conf/nxfilter.jks
-
conf/tpl/access-violation.ftl
-
conf/tpl/alert-email.ftl
-
conf/tpl/block,block.html
-
conf/tpl/block,login.html
-
conf/tpl/block,welcome.html
-
conf/tpl/common-bypass.txt
-
conf/tpl/primary-zone.txt
-
conf/tpl/reverse-zone.txt
-
conf/wknown.txt
-
jahaslist/baselist.nxz
-
jahaslist/categories.txt
-
jahaslist/domain-pattern.txt
-
jahaslist/hosting.txt
-
jahaslist/ruleset.txt
-
lib/activation.jar
-
lib/chardet.jar
-
lib/commons-codec-1.5.jar
-
lib/commons-compress-1.5.jar
-
lib/commons-dbcp-1.4.jar
-
lib/commons-email-1.2.jar
-
lib/commons-io-2.4.jar
-
lib/commons-lang3-3.3.1.jar
-
lib/commons-logging.jar
-
lib/commons-net-3.3.jar
-
lib/commons-pool-1.5.6.jar
-
lib/djmod17.jar
-
lib/ecj-4.4.jar
-
lib/freemarker.jar
-
lib/h2-1.3.176.jar
-
lib/javax.mail.jar
-
lib/jflow.jar
-
lib/json-simple-1.1.1.jar
-
lib/log4j-1.2.16.jar
-
lib/slf4j-api-1.7.22.jar
-
lib/slf4j-log4j12-1.7.22.jar
-
lib/syslog4j-0.9.46-bin.jar
-
lib/tinyradius.jar
-
lib/tomcat-embed-core.jar
-
lib/tomcat-embed-el.jar
-
lib/tomcat-embed-jasper.jar
-
lib/tomcat-embed-logging-juli.jar
-
lib/tomcat7-embed-websocket.jar
-
lib/zip4j_1.3.2.jar
-
license.txt
-
modified/h2db-1.3.136/Server.java
-
modified/h2db-1.3.136/TcpServer.java
-
nxd.ico
-
nxd.jar
-
nxwrapper.exe
Headers
Sections
-
out.upx
Headers
Sections
-
prunsrv.exe
7ee49682df21e24c2c913a4cf46b6f28
Headers
Imports
Sections
-
readme.txt
-
third-party-license.txt
-
tutorial.html
-
webapps/WEB-INF/lib/cos.jar
-
webapps/WEB-INF/web.xml
-
webapps/admin.jsp
-
webapps/block,chrome.jsp
-
webapps/block,login.jsp
-
webapps/block,proxy.jsp
-
webapps/block,welcome.jsp
-
webapps/category,custom.jsp
-
webapps/category,custom_edit.jsp
-
webapps/category,domain_test.jsp
-
webapps/category,system.jsp
-
webapps/category,system_edit.jsp
-
webapps/classifier,blocklist.jsp
-
webapps/classifier,classified.jsp
-
webapps/classifier,classified_view.jsp
-
webapps/classifier,excluded.jsp
-
webapps/classifier,jahaslist.jsp
-
webapps/classifier,ruleset.jsp
-
webapps/classifier,setup.jsp
-
webapps/classifier,test_run.jsp
-
webapps/config,admin.jsp
-
webapps/config,alert.jsp
-
webapps/config,allowed_ip.jsp
-
webapps/config,backup.jsp
-
webapps/config,block_page.jsp
-
webapps/config,cluster.jsp
-
webapps/config,setup.jsp
-
webapps/dashboard.jsp
-
webapps/dns,redirection.jsp
-
webapps/dns,setup.jsp
-
webapps/dns,zone_file.jsp
-
webapps/dns,zone_file_edit.jsp
-
webapps/dns,zone_transfer.jsp
-
webapps/download.jsp
-
webapps/error/error-500.html
-
webapps/example/find_user.jsp
-
webapps/example/login_user.jsp
-
webapps/example/logout_user.jsp
-
webapps/example/noacl,rdesk.jsp
-
webapps/example/upload.jsp
-
webapps/favicon.ico
-
webapps/img/arrow.png
-
webapps/img/bg.png
-
webapps/img/pix.png
-
webapps/import.jsp
-
webapps/include/action_info.jsp
-
webapps/include/bottom.jsp
-
webapps/include/lib.jsp
-
webapps/include/top.jsp
-
webapps/index.jsp
-
webapps/lib/bootstrap.min.css
-
webapps/lib/jquery-1.11.3.min.js
-
webapps/lib/jquery.cookie.js
-
webapps/lib/magnific/LICENSE
-
webapps/lib/magnific/jquery.magnific-popup.js
-
webapps/lib/magnific/magnific-popup.css
-
webapps/lib/mm-styles.css
-
webapps/lib/nxlib.css
-
webapps/lib/nxlib.js
-
webapps/lib/xdpick/MIT-LICENSE.txt
-
webapps/lib/xdpick/jquery.datetimepicker.css
-
webapps/lib/xdpick/jquery.datetimepicker.js
-
webapps/logging,netflow.jsp
-
webapps/logging,request.jsp
-
webapps/logging,signal.jsp
-
webapps/policy,cxblock.jsp
-
webapps/policy,free_time.jsp
-
webapps/policy,policy.jsp
-
webapps/policy,policy_edit.jsp
-
webapps/policy,proxy.jsp
-
webapps/report,daily.jsp
-
webapps/report,usage.jsp
-
webapps/report,weekly.jsp
-
webapps/user,adap.jsp
-
webapps/user,adap_edit.jsp
-
webapps/user,edap.jsp
-
webapps/user,edap_edit.jsp
-
webapps/user,group.jsp
-
webapps/user,group_edit.jsp
-
webapps/user,ldap.jsp
-
webapps/user,ldap_edit.jsp
-
webapps/user,login_request.jsp
-
webapps/user,radius.jsp
-
webapps/user,user.jsp
-
webapps/user,user_edit.jsp
-
webapps/user,user_test.jsp
-
webapps/user,vxlogon.jsp
-
webapps/whitelist,common_bypass.jsp
-
webapps/whitelist,domain.jsp
-
webapps/whitelist,domain_edit.jsp
-
webapps/whitelist,keyword.jsp
-
webapps/whitelist,keyword_edit.jsp