Overview

overview

6

Static

static

6

rules/emer...fo.pdf

windows7-x64

1

rules/emer...fo.pdf

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    9a55018660c78512c581e3a375b62153_JaffaCakes118

  • Size

    2.0MB

  • MD5

    9a55018660c78512c581e3a375b62153

  • SHA1

    ae73835e43bdf8fefa21a1a66b8d487891dcbaff

  • SHA256

    06bf75208ae354f2c2ad03cf0f78019458301a761027dbeee55d85d3f3bc47d9

  • SHA512

    6455c850eeff49a05e302a6a56772cc91240ebd9566efa59c8c569e791a050a6792ab7b88eeed16c811ec153bc4afea3ff833e118e7d5534c3d6a4cafb247fb0

  • SSDEEP

    49152:2CXQWezDmYgJa2i21pgUukt0NsA9f6EITTpaRMRQ:5IzDH6P+tI02A9f6EITTK4Q

Score
6/10
pdfevasion

Malware Config

Signatures

  • Malformed or missing cross-reference table in PDF

    Malformed or missing cross-reference tables are often used to evade detection

    pdfevasion

Files

  • 9a55018660c78512c581e3a375b62153_JaffaCakes118
    .gz
  • open.rules.tar
    .tar
  • rules/BSD-License.txt
  • rules/LICENSE
  • rules/botcc.portgrouped.rules
  • rules/botcc.rules
  • rules/ciarmy.rules
  • rules/classification.config
  • rules/compromised-ips.txt
  • rules/compromised.rules
  • rules/drop.rules
  • rules/dshield.rules
  • rules/emerging-activex.rules
  • rules/emerging-attack_response.rules
  • rules/emerging-chat.rules
  • rules/emerging-current_events.rules
  • rules/emerging-deleted.rules
  • rules/emerging-dns.rules
  • rules/emerging-dos.rules
  • rules/emerging-exploit.rules
  • rules/emerging-ftp.rules
  • rules/emerging-games.rules
  • rules/emerging-icmp.rules
  • rules/emerging-icmp_info.rules
  • rules/emerging-imap.rules
  • rules/emerging-inappropriate.rules
  • rules/emerging-info.rules
    .pdf
  • rules/emerging-malware.rules
  • rules/emerging-misc.rules
  • rules/emerging-mobile_malware.rules
  • rules/emerging-netbios.rules
  • rules/emerging-p2p.rules
  • rules/emerging-policy.rules
  • rules/emerging-pop3.rules
  • rules/emerging-rpc.rules
  • rules/emerging-scada.rules
  • rules/emerging-scan.rules
  • rules/emerging-shellcode.rules
  • rules/emerging-smtp.rules
  • rules/emerging-snmp.rules
  • rules/emerging-sql.rules
  • rules/emerging-telnet.rules
  • rules/emerging-tftp.rules
  • rules/emerging-trojan.rules
  • rules/emerging-user_agents.rules
  • rules/emerging-voip.rules
  • rules/emerging-web_client.rules
    .js .pdf polyglot
  • rules/emerging-web_server.rules
  • rules/emerging-web_specific_apps.rules
  • rules/emerging-worm.rules
  • rules/emerging.conf
  • rules/gen-msg.map
  • rules/gpl-2.0.txt
  • rules/rbn-malvertisers.rules
  • rules/rbn.rules
  • rules/reference.config
  • rules/sid-msg.map
  • rules/suricata-1.2-prior-open.yaml
  • rules/suricata-1.3-etpro-etnamed.yaml
  • rules/suricata-1.3-open.yaml
  • rules/tor.rules
  • rules/unicode.map