Overview

overview

7

Static

static

7

Better mob...rk.jad

windows7-x64

3

Better mob...rk.jad

windows10-2004-x64

3

MobiLuck/MobiLuck.ps1

windows7-x64

3

MobiLuck/MobiLuck.ps1

windows10-2004-x64

3

Secarter/�...MS.app

macos-10.15-amd64

power moba...��.exe

windows7-x64

1

power moba...��.exe

windows10-2004-x64

1

pvp playr/...ER.app

macos-10.15-amd64

4

Sharing

Copy URL Twitter E-mail

General

  • Target

    3466a22941b868af4ad67334afe7a6ad_JaffaCakes118

  • Size

    1.2MB

  • MD5

    3466a22941b868af4ad67334afe7a6ad

  • SHA1

    c6635e52f685c2bc1a7112fdaaf2afd3683d07b0

  • SHA256

    64221f6f4fb74728fa0477acc0e960e309d95236ebafb8ea8043b13ddc7a1105

  • SHA512

    42728c07b6a2222fdcc46e2c291b356b5fc28952812f3417f4870ca442f1c35af3a670ef910e33d14044883194904db0938923ddec9c87d9f63bdd511d94d072

  • SSDEEP

    24576:PRnY6Tizq6qG0A5CqfaPDsgESIFqghGtOcPWQWTfITr9nmsksCj+QschtVF0Mod:PRJj6qG0AvvgEBZGzWtqkzjxtFod

Score
7/10
aspackv2

Malware Config

Signatures

  • ASPack v2.12-2.42 1 IoCs

    Detects executables packed with ASPack v2.12-2.42

    aspackv2
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 3466a22941b868af4ad67334afe7a6ad_JaffaCakes118
    .rar
  • Better mobail/JBenchmark.jar
    .jad
  • Better mobail/الرجـــاء الدخـــول.txt
  • Crystal Pond/3D.Arts.Crystal.Pond.DSS.ScreenSaver.v1.0.sis
  • Crystal Pond/الرجـــاء الدخـــول.txt
  • MobiLuck/MobiLuck.sis
    .ps1
  • MobiLuck/الرجـــاء الدخـــول.txt
  • Secarter/الرجـــاء الدخـــول.txt
  • Secarter/ںé«è©¢ï© ںé¦ں­/MS.APP
  • Secarter/ںé«è©¢ï© ںé¦ں­/Mobile Secretary.JPG
    .jpg
  • Secarter/ںé«è©¢ï© ںé¦ں­/Mobile Secretary.sis
  • Secarter/ںé«è©¢ï© ںé¦ں­/Mobile Secretary.txt
  • Secarter/ںé«è©¢ï© ںé¦ں­/Thumbs.db
  • Vidio clebs/full ©ëںê¤ ïëھé ںéه§ïي èéï ں¢ êë ںéë¢ wap/FBT-Squeezing_Data2.JPG
    .jpg
  • Vidio clebs/full ©ëںê¤ ïëھé ںéه§ïي èéï ں¢ êë ںéë¢ wap/FBT-Squeezing_Data2.sis
  • Vidio clebs/full ©ëںê¤ ïëھé ںéه§ïي èéï ں¢ êë ںéë¢ wap/Thumbs.db
  • Vidio clebs/الرجـــاء الدخـــول.txt
  • blacklist_v1/BlackList_v1.01_full.sis
  • blacklist_v1/الرجـــاء الدخـــول.txt
  • images/الرجـــاء الدخـــول.txt
  • images/ںهàé  ©ëںê¤ ںééم   ںé­ي©fotofunpack104/FotoFunPack104.JPG
    .jpg
  • images/ںهàé  ©ëںê¤ ںééم   ںé­ي©fotofunpack104/FotoFunPack104.SIS
  • images/ںهàé  ©ëںê¤ ںééم   ںé­ي©fotofunpack104/Thumbs.db
  • power mobail/ ©ëںê¤ êêèë مë ل©ïçى ¢¥§ï§ ںé ©ںê¤ ںé¢ï ¢مêé ê ں¬©ى مë§ ¢¬نïé ںé/S60_AutoStart.JPG
    .jpg
  • power mobail/ ©ëںê¤ êêèë مë ل©ïçى ¢¥§ï§ ںé ©ںê¤ ںé¢ï ¢مêé ê ں¬©ى مë§ ¢¬نïé ںé/S60_AutoStart.sis
  • power mobail/ ©ëںê¤ êêèë مë ل©ïçى ¢¥§ï§ ںé ©ںê¤ ںé¢ï ¢مêé ê ں¬©ى مë§ ¢¬نïé ںé/keygen.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • power mobail/الرجـــاء الدخـــول.txt
  • pvp playr/ ©ëںê¤ é¢¬نïé ¤êïم êéهں¢ ںéهï§ïي ںééï هï ںé¤يںé/PVPLAYER.APP
  • pvp playr/ ©ëںê¤ é¢¬نïé ¤êïم êéهں¢ ںéهï§ïي ںééï هï ںé¤يںé/Thumbs.db
  • pvp playr/ ©ëںê¤ é¢¬نïé ¤êïم êéهں¢ ںéهï§ïي ںééï هï ںé¤يںé/pvplayer 6600-7650.JPG
    .jpg
  • pvp playr/ ©ëںê¤ é¢¬نïé ¤êïم êéهں¢ ںéهï§ïي ںééï هï ںé¤يںé/pvplayer 6600-7650.sis
  • pvp playr/الرجـــاء الدخـــول.txt