General

  • Target

    5e2811a1d2df600a913d82630286f395_JaffaCakes118

  • Size

    1.4MB

  • MD5

    5e2811a1d2df600a913d82630286f395

  • SHA1

    42114ac635c4e8e96dff26ce5a2eb7c5a51a1551

  • SHA256

    61c43e1819dd670f4c589aac171c43ff2af07a0fc07414b1af306472049152da

  • SHA512

    568b015c2c56a92d8aef1ec92f29ca85e568f2eb1f18fc68e64ff3e0c5887a689d89dba270439a2c8fa83bae8fb8c8e89ee0a792c9c7ed16ee34823602feb63a

  • SSDEEP

    24576:axpXPaR2J33o3S7P5zuHHOF2CxfehMHsGKzOYCMEMfX4IZ10zjP8CAq:apy+VDi8rgHfX4IZGzjP8CAq

Score
10/10

Malware Config

Extracted

Family

socelars

C2

http://www.iyiqian.com/

http://www.hbgents.top/

http://www.rsnzhy.com/

http://www.znsjis.top/

Signatures

  • Socelars family
  • Socelars payload 1 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 5e2811a1d2df600a913d82630286f395_JaffaCakes118
    .exe windows:6 windows x86 arch:x86

    d69e4c13e25f0ad622344ac56118c0df


    Headers

    Imports

    Sections