Overview

overview

6

Static

static

4

VProtect_1...se.dll

windows7-x64

1

VProtect_1...se.dll

windows10-2004-x64

1

VProtect_1...m1.vbs

windows7-x64

1

VProtect_1...m1.vbs

windows10-2004-x64

1

VProtect_1...ge.url

windows7-x64

6

VProtect_1...ge.url

windows10-2004-x64

3

VProtect_1...en.exe

windows7-x64

5

VProtect_1...en.exe

windows10-2004-x64

5

VProtect_1...dk.dll

windows7-x64

1

VProtect_1...dk.dll

windows10-2004-x64

1

VProtect_1...en.dll

windows7-x64

5

VProtect_1...en.dll

windows10-2004-x64

5

VProtect_1...dk.dll

windows7-x64

1

VProtect_1...dk.dll

windows10-2004-x64

1

VProtect_1...en.dll

windows7-x64

5

VProtect_1...en.dll

windows10-2004-x64

5

VProtect_1...m1.vbs

windows7-x64

1

VProtect_1...m1.vbs

windows10-2004-x64

1

VProtect_1...dk.dll

windows7-x64

5

VProtect_1...dk.dll

windows10-2004-x64

5

VProtect_1...ct.dll

windows7-x64

5

VProtect_1...ct.dll

windows10-2004-x64

5

VProtect_1...ct.exe

windows7-x64

5

VProtect_1...ct.exe

windows10-2004-x64

5

VProtect_1...al.url

windows7-x64

1

VProtect_1...al.url

windows10-2004-x64

1

VProtect_1...Cn.pdf

windows7-x64

1

VProtect_1...Cn.pdf

windows10-2004-x64

1

下载说明.htm

windows7-x64

1

下载说明.htm

windows10-2004-x64

1

使用帮�...�).url

windows7-x64

1

使用帮�...�).url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    b6cc64f99850f1600c46a662717cb76c_JaffaCakes118

  • Size

    10.8MB

  • MD5

    b6cc64f99850f1600c46a662717cb76c

  • SHA1

    93142491f028f320c7856d34000bb2a6695ef372

  • SHA256

    e49075d521d673e18166186127999550a0705a17d9ef8736e5b9e75a7f24ca17

  • SHA512

    90ff403455c7303af3956be1f48cfb058a39037106ff408070b194ce558498ed19ed9a9a17754e7a12f66dbb3cb816e37dfcdee9a27a2497bb195b7d1492f0a2

  • SSDEEP

    196608:kcYBkjRpyaKaq3PzEdK9LBwc0EsfEdK9LBwc0EHDMNFkxB2tgBG4AMRPQLkp8aKf:RrPyaKh3rtd2rztd2rh2xB2GBuMhQ4pW

Score
4/10
pdflink

Malware Config

Signatures

  • HTTP links in PDF interactive object 1 IoCs

    Detects HTTP links in interactive objects within PDF files.

    pdflink
  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink
  • Unsigned PE 10 IoCs

    Checks for missing Authenticode signature.

Files

  • b6cc64f99850f1600c46a662717cb76c_JaffaCakes118
    .rar
  • VProtect_1.9.1.0_Pro/Bin/Vp_License.dll
  • VProtect_1.9.1.0_Pro/Examples/C++/License&Sdk/Example.cpp
  • VProtect_1.9.1.0_Pro/Examples/C++/License&Sdk/Lisence.aps
  • VProtect_1.9.1.0_Pro/Examples/C++/License&Sdk/Lisence.rc
  • VProtect_1.9.1.0_Pro/Examples/C++/License&Sdk/Lisence.sln
  • VProtect_1.9.1.0_Pro/Examples/C++/License&Sdk/Lisence.suo
  • VProtect_1.9.1.0_Pro/Examples/C++/License&Sdk/Lisence.vcproj
    .xml
  • VProtect_1.9.1.0_Pro/Examples/C++/License&Sdk/resource.h
  • VProtect_1.9.1.0_Pro/Examples/C++/SdkMark/C++.cpp
  • VProtect_1.9.1.0_Pro/Examples/C++/SdkMark/C++.sln
  • VProtect_1.9.1.0_Pro/Examples/C++/SdkMark/C++.suo
  • VProtect_1.9.1.0_Pro/Examples/C++/SdkMark/C++.vcproj
    .xml
  • VProtect_1.9.1.0_Pro/Examples/C++/SdkMark/ClassDiagram1.cd
  • VProtect_1.9.1.0_Pro/Examples/C++/SdkMark/ReadMe.txt
  • VProtect_1.9.1.0_Pro/Examples/C++/SdkMark/stdafx.cpp
  • VProtect_1.9.1.0_Pro/Examples/C++/SdkMark/stdafx.h
  • VProtect_1.9.1.0_Pro/Examples/C++/SdkMark/targetver.h
  • VProtect_1.9.1.0_Pro/Examples/C++/VersionManager/C++.cpp
  • VProtect_1.9.1.0_Pro/Examples/C++/VersionManager/C++.sln
  • VProtect_1.9.1.0_Pro/Examples/C++/VersionManager/C++.suo
  • VProtect_1.9.1.0_Pro/Examples/C++/VersionManager/C++.vcproj
    .xml
  • VProtect_1.9.1.0_Pro/Examples/C++/VersionManager/ClassDiagram1.cd
  • VProtect_1.9.1.0_Pro/Examples/C++/VersionManager/ReadMe.txt
  • VProtect_1.9.1.0_Pro/Examples/C++/VersionManager/stdafx.cpp
  • VProtect_1.9.1.0_Pro/Examples/C++/VersionManager/stdafx.h
  • VProtect_1.9.1.0_Pro/Examples/C++/VersionManager/targetver.h
  • VProtect_1.9.1.0_Pro/Examples/Delphi/License&Sdk/Main.dfm
  • VProtect_1.9.1.0_Pro/Examples/Delphi/License&Sdk/Main.pas
  • VProtect_1.9.1.0_Pro/Examples/Delphi/License&Sdk/Vp_Example.dpr
  • VProtect_1.9.1.0_Pro/Examples/Delphi/License&Sdk/Vp_Example.dproj
  • VProtect_1.9.1.0_Pro/Examples/Delphi/License&Sdk/Vp_Example.res
  • VProtect_1.9.1.0_Pro/Examples/Delphi/VersionManager/Main.dfm
  • VProtect_1.9.1.0_Pro/Examples/Delphi/VersionManager/Main.pas
  • VProtect_1.9.1.0_Pro/Examples/Delphi/VersionManager/Vp_Version.dpr
  • VProtect_1.9.1.0_Pro/Examples/Delphi/VersionManager/Vp_Version.dproj
  • VProtect_1.9.1.0_Pro/Examples/Delphi/VersionManager/Vp_Version.res
  • VProtect_1.9.1.0_Pro/Examples/Readme.txt
  • VProtect_1.9.1.0_Pro/Examples/Visual Basic/Form1.frm
    .vbs
  • VProtect_1.9.1.0_Pro/Examples/Visual Basic/Project1.vbp
  • VProtect_1.9.1.0_Pro/Examples/Visual Basic/Project1.vbw
  • VProtect_1.9.1.0_Pro/Examples/易语言/Examples.e
  • VProtect_1.9.1.0_Pro/Examples/易语言/虚拟保护&乱序保护演示.e
  • VProtect_1.9.1.0_Pro/History.txt
  • VProtect_1.9.1.0_Pro/Homepage.url
  • VProtect_1.9.1.0_Pro/License.txt
  • VProtect_1.9.1.0_Pro/License/KeyGen.exe
    .exe windows:5 windows x86 arch:x86

    c89239902971ccf6c4e8c909a61e22ec


    Headers

    Imports

    Sections

  • VProtect_1.9.1.0_Pro/License/Language/CHS.txt
  • VProtect_1.9.1.0_Pro/License/Language/ENG.txt
  • VProtect_1.9.1.0_Pro/License/VP_License_Sdk.dll
    .dll windows:5 windows x86 arch:x86

    96980488d0454357663fe45f654a78b1


    Headers

    Imports

    Exports

    Sections

  • VProtect_1.9.1.0_Pro/License/Vp_KeyGen.dll
    .dll windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections

  • VProtect_1.9.1.0_Pro/License/Vp_Lisence_Project.Dat
  • VProtect_1.9.1.0_Pro/License_chs.txt
  • VProtect_1.9.1.0_Pro/Readme.txt
  • VProtect_1.9.1.0_Pro/Readme_eng.txt
  • VProtect_1.9.1.0_Pro/SDK/BCB/VP_License_Sdk.h
  • VProtect_1.9.1.0_Pro/SDK/BCB/Virtualize_Sdk.h
  • VProtect_1.9.1.0_Pro/SDK/C++/VP_License_Sdk.h
  • VProtect_1.9.1.0_Pro/SDK/C++/Virtualize_Sdk.h
  • VProtect_1.9.1.0_Pro/SDK/C/VP_License_Sdk.h
  • VProtect_1.9.1.0_Pro/SDK/C/Virtualize_Sdk.h
  • VProtect_1.9.1.0_Pro/SDK/Lib/VP_License_Sdk.dll
    .dll windows:5 windows x86 arch:x86

    96980488d0454357663fe45f654a78b1


    Headers

    Imports

    Exports

    Sections

  • VProtect_1.9.1.0_Pro/SDK/Lib/VP_License_Sdk.lib
  • VProtect_1.9.1.0_Pro/SDK/Lib/Vp_KeyGen.dll
    .dll windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections

  • VProtect_1.9.1.0_Pro/SDK/Lib/Vp_KeyGen.lib
  • VProtect_1.9.1.0_Pro/SDK/Pascal/VP_License_Sdk.dcu
  • VProtect_1.9.1.0_Pro/SDK/Pascal/VP_License_Sdk.pas
  • VProtect_1.9.1.0_Pro/SDK/Pascal/Vp_Sdk_Depth_Mutation.inc
  • VProtect_1.9.1.0_Pro/SDK/Pascal/Vp_Sdk_Depth_Virtualize.inc
  • VProtect_1.9.1.0_Pro/SDK/Pascal/Vp_Sdk_Mutation.inc
  • VProtect_1.9.1.0_Pro/SDK/Pascal/Vp_Sdk_Mutation_Begin.inc
  • VProtect_1.9.1.0_Pro/SDK/Pascal/Vp_Sdk_Mutation_End.inc
  • VProtect_1.9.1.0_Pro/SDK/Pascal/Vp_Sdk_RegDeCode_End.inc
  • VProtect_1.9.1.0_Pro/SDK/Pascal/Vp_Sdk_RegDeCode_Sta.inc
  • VProtect_1.9.1.0_Pro/SDK/Pascal/Vp_Sdk_Virtualize.inc
  • VProtect_1.9.1.0_Pro/SDK/Pascal/Vp_Sdk_Virtualize_Begin.inc
  • VProtect_1.9.1.0_Pro/SDK/Pascal/Vp_Sdk_Virtualize_End.inc
  • VProtect_1.9.1.0_Pro/SDK/Visual Basic/Form1.frm
    .vbs
  • VProtect_1.9.1.0_Pro/SDK/Visual Basic/Project1.vbp
  • VProtect_1.9.1.0_Pro/SDK/Visual Basic/Project1.vbw
  • VProtect_1.9.1.0_Pro/SDK/易语言/Examples.e
  • VProtect_1.9.1.0_Pro/SDK/易语言/Thanks.txt
  • VProtect_1.9.1.0_Pro/SDK/易语言/VProtectSDK.e
  • VProtect_1.9.1.0_Pro/SDK/易语言/VProtectSDK_en.e
  • VProtect_1.9.1.0_Pro/SDK/易语言/虚拟保护&乱序保护演示.e
  • VProtect_1.9.1.0_Pro/VP_Sdk.dll
    .dll windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections

  • VProtect_1.9.1.0_Pro/VProtect.dll
    .dll windows:4 windows x86 arch:x86

    87c197c9c123344bf1b022f1d4b2c5af


    Headers

    Imports

    Exports

    Sections

  • VProtect_1.9.1.0_Pro/VProtect.exe
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • VProtect_1.9.1.0_Pro/Video tutorial.url
  • VProtect_1.9.1.0_Pro/Vprotect.dat
  • VProtect_1.9.1.0_Pro/help/help_Cn.pdf
    .pdf

    • http://126.com

    • http://VProtect.net

    • http://Vp_Sdk_Depth_Mutation.inc

    • http://Vp_Sdk_Depth_Virtualize.inc

    • http://Vp_Sdk_Mutation.inc

    • http://Vp_Sdk_Mutation_Begin.inc

    • http://Vp_Sdk_Mutation_End.inc

    • http://Vp_Sdk_RegDeCode_End.inc

    • http://Vp_Sdk_RegDeCode_Sta.inc

    • Show all
  • 下载说明.htm
    .html
  • 使用帮助(河东下载站).url
    .url
  • 使用说明.txt
  • 注册机/VP_Reg.Dat
  • 注册机/Vp_GenKey.Dat
  • 注册机/Vp_GenKey.exe
    .exe windows:5 windows x86 arch:x86

    c89239902971ccf6c4e8c909a61e22ec


    Headers

    Imports

    Sections

  • 注册机/Vp_KeyGen.dll
    .dll windows:5 windows x86 arch:x86


    Headers

    Exports

    Sections

  • 注册机/Vp_Notify.Dat
  • 注册机/language/CHS.txt
  • 注册机/language/ENG.txt