Overview

overview

3

Static

static

3

保姆小�...DK.dll

windows7-x64

1

保姆小�...DK.dll

windows10-2004-x64

1

保姆小�...ib.dll

windows7-x64

1

保姆小�...ib.dll

windows10-2004-x64

1

保姆小�...ib.dll

windows7-x64

1

保姆小�...ib.dll

windows10-2004-x64

1

保姆小�...20.dll

windows7-x64

1

保姆小�...20.dll

windows10-2004-x64

1

保姆小�...ET.dll

windows7-x64

1

保姆小�...ET.dll

windows10-2004-x64

1

保姆小�...et.dll

windows7-x64

1

保姆小�...et.dll

windows10-2004-x64

1

保姆小�...05.dll

windows7-x64

1

保姆小�...05.dll

windows10-2004-x64

1

保姆小�...ng.exe

windows7-x64

3

保姆小�...ng.exe

windows10-2004-x64

1

保姆小�...��.exe

windows7-x64

1

保姆小�...��.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5ccd0e173edf7282419018563ab2e3f0_JaffaCakes118

  • Size

    1.7MB

  • MD5

    5ccd0e173edf7282419018563ab2e3f0

  • SHA1

    903524be0c3d5917165ccac7c0a84ca2db231cd5

  • SHA256

    953d51a70801fe3bfd5391d9436a9d378ecf9e812ad4e6dbb057fce40c99a8cc

  • SHA512

    857b0f7d500af8a55cafb910e3d49dccca57941bf643da3d495b250ca38ce90b2fa899858a30d42893b3781b7fc156bf23a8d61b6ee2fa46d1181d1af3e62c41

  • SSDEEP

    49152:kB5fuSVoJzoKu7PqvvW3eGifZoqgqw0LJsxxYT:wfuMKu7Cvbph5q0T

Score
3/10

Malware Config

Signatures

  • Unsigned PE 9 IoCs

    Checks for missing Authenticode signature.

Files

  • 5ccd0e173edf7282419018563ab2e3f0_JaffaCakes118
    .rar
  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/FetionSDK.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/Interop.QuartzTypeLib.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/Interop.SSOAxCtrlForPTLoginLib.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/Newtonsoft.Json.Net20.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/WININET.DLL
    .dll windows:5 windows x86 arch:x86

    a08db86f6b1f2f2392a846d551ee4cad


    Headers

    Imports

    Exports

    Sections

  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/allCookie.data
  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/config.ini
  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/config.xml
    .xml
  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/log4net.config
    .xml
  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/log4net.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/prop.xml
    .xml
  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/skincrafter.net-vs2005.dll
    .dll windows:4 windows x86 arch:x86

    cc59c365bc885f06f0cee2d725f51cae


    Headers

    Imports

    Sections

  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/sky.gif
    .gif
  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/skyparam.xml
    .xml
  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/保姆小黑 V2.32-QQ摩天大楼辅助 By Loading.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/保姆小黑.exe.config
    .xml
  • 保姆小黑_V2.32-QQ摩天大楼辅助_By_Loading/运行不了点击这个文件.exe
    .exe windows:5 windows x86 arch:x86

    c32bbe9fc4a1294318cc1dd7b4d0eea3


    Headers

    Imports

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.