General
-
Target
a2a35a3e0e9847ba5625c8abd4da99a0_JaffaCakes118
-
Size
163KB
-
MD5
a2a35a3e0e9847ba5625c8abd4da99a0
-
SHA1
8b7d61741a194b44368efb72d8999ab2d99a3128
-
SHA256
005f18de80776abeb906ccd688dc1d2ff9b02c371159ddd43abba25239e853c9
-
SHA512
d58134258ee7e1dadbcf03b5d93a5bd87a6c044dddafb55d7d44926155409a7655979872b45999c0e46170ddd13e4f2363d6940bdc627598174c23648c1b0d17
-
SSDEEP
3072:m0wXgje8KManBfTMdGUadqrqAFf1Xs/Ei6ixhG9d2h76ouREGWM/rEdTwWO5:mhXgjSRgdGmrqA3XKxhG927L2EfNtW
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
a2a35a3e0e9847ba5625c8abd4da99a0_JaffaCakes118
Password: infected
-
ShadowBot - Sep 2008/Compressed/..pass
-
ShadowBot - Sep 2008/Compressed/Debug/Debug.pass
-
ShadowBot - Sep 2008/Compressed/index.log
-
ShadowBot - Sep 2008/Debug/pstorec.tlh
-
ShadowBot - Sep 2008/Debug/pstorec.tli
-
ShadowBot - Sep 2008/MD5ChecksumTest.exe
45d8cb55bcfec04939099fc1affdfcce
Headers
Imports
Sections
-
ShadowBot - Sep 2008/PackFiles.sh
-
ShadowBot - Sep 2008/Psapi.Lib
-
ShadowBot - Sep 2008/Psapi.h
-
ShadowBot - Sep 2008/ShadowBot.dsw
-
ShadowBot - Sep 2008/ShadowBot.ncb
-
ShadowBot - Sep 2008/ShadowBot.opt
-
ShadowBot - Sep 2008/ShadowBotDLL.cpp
-
ShadowBot - Sep 2008/ShadowBotDLL.dsp
-
ShadowBot - Sep 2008/ShadowBotDLL.dsw
-
ShadowBot - Sep 2008/ShadowBotDLL.ncb
-
ShadowBot - Sep 2008/ShadowBotDLL.opt
-
ShadowBot - Sep 2008/ShadowBotDLL.plg
-
ShadowBot - Sep 2008/extern.h
-
ShadowBot - Sep 2008/inc.h
-
ShadowBot - Sep 2008/md5.cpp
-
ShadowBot - Sep 2008/md5.h
-
ShadowBot - Sep 2008/pstore.cpp
-
ShadowBot - Sep 2008/pstorec.tlh
-
ShadowBot - Sep 2008/pstorec.tli
-
ShadowBot - Sep 2008/skysyn.cpp
-
ShadowBot - Sep 2008/windns.h