Overview

overview

10

Static

static

3

DHL PACKAG...PG.exe

windows7-x64

10

DHL PACKAG...PG.exe

windows10-2004-x64

10

$TEMP/System.dll

windows7-x64

3

$TEMP/System.dll

windows10-2004-x64

3

$TEMP/carritches.dll

windows7-x64

1

$TEMP/carritches.dll

windows10-2004-x64

1

$TEMP/rati...lc.exe

windows7-x64

1

$TEMP/rati...lc.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    78d89a897e8ef98afb21ff026645ff68_JaffaCakes118

  • Size

    230KB

  • MD5

    78d89a897e8ef98afb21ff026645ff68

  • SHA1

    8d7b97d035cdd26b7fd32b0c0e954e9539114113

  • SHA256

    0eb3f48092f0c494da8ae015a5e76b2154e66938ec954f72eb6caf6257f9fb3c

  • SHA512

    73cbceaeb303242fa3571441e0cc4cd39d332f872474373c2a29dcdece322f34a9fade0ba6d7227edd2aaa09f80a5fc38e781969cf46b0d86463df45463d6f58

  • SSDEEP

    6144:DncrSScLjvkMPLVmHfPIMuJTBwmrw0ybqL3wO+gl0zNuwl/Hg2:or9ijv/GP9uJnrlybqLgZg2

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • 78d89a897e8ef98afb21ff026645ff68_JaffaCakes118
    .ace
  • out.ace
    .ace
  • DHL PACKAGE DELIVERY - JPG.exe
    .exe windows:4 windows x86 arch:x86

    b34f154ec913d2d2c435cbd644e91687


    Headers

    Imports

    Sections

  • $TEMP/Millefiori
  • $TEMP/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $TEMP/carritches.dll
    .dll windows:4 windows x86 arch:x86

    86e08e939ad63e008de0edf5325b6304


    Headers

    Imports

    Exports

    Sections

  • $TEMP/rating/dirname/tos/installutil.exe
    .xml
  • $TEMP/rating/dirname/tos/lc.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • $TEMP/rating/dirname/tos/sbscs.cvl