Overview

overview

10

Static

static

3

hjjm/help/lqa.htm

windows7-x64

1

hjjm/help/lqa.htm

windows10-2004-x64

1

hjjm/hjjm.dll

windows7-x64

6

hjjm/hjjm.dll

windows10-2004-x64

6

hjjm/hjjm.exe

windows7-x64

7

hjjm/hjjm.exe

windows10-2004-x64

7

hjjm/hjjm_move.exe

windows7-x64

1

hjjm/hjjm_move.exe

windows10-2004-x64

1

hjjm/hjlock.exe

windows7-x64

7

hjjm/hjlock.exe

windows10-2004-x64

7

hjjm/hjtools_menu.dll

windows7-x64

1

hjjm/hjtools_menu.dll

windows10-2004-x64

1

hjjm/uhjjm.exe

windows7-x64

10

hjjm/uhjjm.exe

windows10-2004-x64

10

hjjm/update.exe

windows7-x64

1

hjjm/update.exe

windows10-2004-x64

1

hjjm/卸�...��.exe

windows7-x64

1

hjjm/卸�...��.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    5d4f4bcd5feb07b60815622bdd543203_JaffaCakes118

  • Size

    1.3MB

  • MD5

    5d4f4bcd5feb07b60815622bdd543203

  • SHA1

    af5dd8a52103cdab1dd87813a1503bf4b508f1fe

  • SHA256

    5d1fc870b8cf21e08bbe5cb78fb9c3657c36eacc75ac1b2ec162c06747175b9a

  • SHA512

    620a4b2090d22625c70992ec9fc450a4caf25ad9d2147510fb99199f8cd2e15568ebaf12c108e9ad8e820f884e835784d1c09e4d69e9c771002dd6a2757f7593

  • SSDEEP

    24576:m0dvQeO9RONrg4ydM57OW80V8Gw1zB7X2QNu9T31ygVbvMNO/746aynVI0Je+34+:b4e1rjydM5D8Zv1MdT31ygRma46DrOm

Score
3/10

Malware Config

Signatures

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • 5d4f4bcd5feb07b60815622bdd543203_JaffaCakes118
    .rar
  • hjjm/help/lqa.htm
    .html
  • hjjm/hjjm.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    f4fe55365e41f3220ab49f7351fb39c0


    Headers

    Imports

    Exports

    Sections

  • hjjm/hjjm.exe
    .exe windows:4 windows x86 arch:x86

    344daf2cfb00dd0c580a5c64f34b4faa


    Code Sign

    Headers

    Imports

    Sections

  • hjjm/hjjm_move.exe
    .exe windows:4 windows x86 arch:x86

    e336f68194bbe5d4ca48c2e9280dc260


    Code Sign

    Headers

    Imports

    Sections

  • hjjm/hjlock.exe
    .exe windows:4 windows x86 arch:x86

    7c265226fa1a0b239f5ae9afbf2a2443


    Headers

    Imports

    Sections

  • hjjm/hjtools_menu.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    44fc0831a5d98517fb58b6238174018d


    Headers

    Imports

    Exports

    Sections

  • hjjm/hjtools_menu.dll.ico
  • hjjm/icon/1.ico
  • hjjm/icon/18.ico
  • hjjm/icon/2.ico
  • hjjm/icon/28.ico
  • hjjm/icon/3.ico
  • hjjm/icon/38.ico
  • hjjm/icon/48.ico
  • hjjm/icon/5.ico
  • hjjm/icon/58.ico
  • hjjm/icon/6.ico
  • hjjm/icon/666666.ico
  • hjjm/icon/68.ico
  • hjjm/icon/78.ico
  • hjjm/icon/8.ICO
  • hjjm/icon/88.ico
  • hjjm/icon/888888.ico
  • hjjm/icon/9.ico
  • hjjm/icon/98.ICO
  • hjjm/icon/bitmap1.bmp
  • hjjm/icon/bitmap2.bmp
  • hjjm/icon/deng.ICO
  • hjjm/icon/freecell.ICO
  • hjjm/icon/gantan.ICO
  • hjjm/icon/hong.ICO
  • hjjm/icon/normal.ICO
  • hjjm/icon/normal_32.ICO
  • hjjm/icon/ren.ICO
  • hjjm/param.ini
  • hjjm/skin/default/Thumbs.db
  • hjjm/skin/default/bg.bmp
  • hjjm/skin/default/c_d.bmp
  • hjjm/skin/default/c_n.bmp
  • hjjm/skin/default/close_h.bmp
  • hjjm/skin/default/close_n.bmp
  • hjjm/skin/default/h_d.bmp
  • hjjm/skin/default/h_n.bmp
  • hjjm/skin/default/help_d.bmp
  • hjjm/skin/default/help_n.bmp
  • hjjm/skin/default/j_d.bmp
  • hjjm/skin/default/j_n.bmp
  • hjjm/skin/default/min_h.bmp
  • hjjm/skin/default/min_n.bmp
  • hjjm/skin/default/s_d.bmp
  • hjjm/skin/default/s_n.bmp
  • hjjm/skin/default/w_d.bmp
  • hjjm/skin/default/w_n.bmp
  • hjjm/uhjjm.exe
    .exe windows:4 windows x86 arch:x86

    4560645702b975a79ac1f85cbd7fd7f4


    Code Sign

    Headers

    Imports

    Sections

  • hjjm/update.exe
    .exe windows:4 windows x86 arch:x86

    f907361307bd0beff3723e09a8940804


    Headers

    Imports

    Sections

  • hjjm/卸载宏杰加密.exe
    .exe windows:4 windows x86 arch:x86

    cefac57b7713695677ad5f38c6a5fbdb


    Headers

    Imports

    Sections