Overview

overview

8

Static

static

7

PhotoDVD/!Install.cmd

windows7-x64

8

PhotoDVD/!Install.cmd

windows10-2004-x64

8

PhotoDVD/!...ll.cmd

windows7-x64

1

PhotoDVD/!...ll.cmd

windows10-2004-x64

1

PhotoDVD/DeImgT31.dll

windows7-x64

1

PhotoDVD/DeImgT31.dll

windows10-2004-x64

1

PhotoDVD/EDSDK.dll

windows7-x64

1

PhotoDVD/EDSDK.dll

windows10-2004-x64

1

PhotoDVD/EdsImage.dll

windows7-x64

1

PhotoDVD/EdsImage.dll

windows10-2004-x64

1

PhotoDVD/MACDll.dll

windows7-x64

1

PhotoDVD/MACDll.dll

windows10-2004-x64

3

PhotoDVD/Mpc_vso.dll

windows7-x64

3

PhotoDVD/Mpc_vso.dll

windows10-2004-x64

3

PhotoDVD/Patch.exe

windows7-x64

7

PhotoDVD/Patch.exe

windows10-2004-x64

7

PhotoDVD/PcSetup.exe

windows7-x64

6

PhotoDVD/PcSetup.exe

windows10-2004-x64

6

PhotoDVD/PhotoDVD.exe

windows7-x64

6

PhotoDVD/PhotoDVD.exe

windows10-2004-x64

6

PhotoDVD/P...er.exe

windows7-x64

7

PhotoDVD/P...er.exe

windows10-2004-x64

7

PhotoDVD/avcodec.dll

windows7-x64

3

PhotoDVD/avcodec.dll

windows10-2004-x64

3

PhotoDVD/avformat.dll

windows7-x64

3

PhotoDVD/avformat.dll

windows10-2004-x64

3

PhotoDVD/avutil.dll

windows7-x64

1

PhotoDVD/avutil.dll

windows10-2004-x64

1

PhotoDVD/azid.dll

windows7-x64

1

PhotoDVD/azid.dll

windows10-2004-x64

7

PhotoDVD/dcrawlib.dll

windows7-x64

1

PhotoDVD/dcrawlib.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    5d49186f1aab5410167c712228d7521e_JaffaCakes118

  • Size

    11.6MB

  • MD5

    5d49186f1aab5410167c712228d7521e

  • SHA1

    b622ce37210aed2aa992a487bbca1b1d72610312

  • SHA256

    e84e8897541b65e026cbd36eb2322ffc971bc755c2f032d2b223e84d3bb2ec00

  • SHA512

    55d8ff77333cf0bc5898dc06d0429c3dd062c29e7b1909f89140fefb4762ce82542a2d29087c81957a4ca9135169a05f1ce430246adb38a81a876f6547bfe41f

  • SSDEEP

    196608:qjPbkPDQncuWKNNlYcdKH2MDkV2nF61ZXVDuqMi1jUmTTd+:4bmscvKNNezH2RGc9VLYUA

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 24 IoCs

    Checks for missing Authenticode signature.

Files

  • 5d49186f1aab5410167c712228d7521e_JaffaCakes118
    .rar
  • PhotoDVD/!Install.cmd
  • PhotoDVD/!UnInstall.cmd
  • PhotoDVD/DeImgT31.dll
    .dll windows:4 windows x86 arch:x86

    2976eb787751fb0295262719c0b1bb7d


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/EDSDK.dll
    .dll windows:4 windows x86 arch:x86

    b02022e960e6a330afe87e0340eea238


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/EdsImage.dll
    .dll windows:4 windows x86 arch:x86

    2242e5d7d0f6808ae494e035af98fa0d


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/MACDll.dll
    .dll windows:4 windows x86 arch:x86

    e2c74ffadae0d70ecf4b14291e53bc3e


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/Mpc_vso.dll
    .dll windows:4 windows x86 arch:x86

    400ff31f20077f5eca61aab240f68832


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/Patch.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • PhotoDVD/PcSetup.exe
    .exe windows:4 windows x86 arch:x86

    4509c0658a7e89e193c666a8eb13d02d


    Code Sign

    Headers

    Imports

    Sections

  • PhotoDVD/PhotoDVD.exe
    .exe windows:4 windows x86 arch:x86

    26ccef955b1b2e8e1bfb10fcfb85bef0


    Headers

    Imports

    Sections

  • PhotoDVD/PhotoPlayer.exe
    .exe windows:4 windows x86 arch:x86

    3d007b771e6aea10ad818564606c62ad


    Headers

    Imports

    Sections

  • PhotoDVD/avcodec.dll
    .dll windows:4 windows x86 arch:x86

    b4d2709bbc163693aef7ddb4636962e9


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/avformat.dll
    .dll windows:4 windows x86 arch:x86

    0a259c56767187d77a7b23a952571788


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/avutil.dll
    .dll windows:4 windows x86 arch:x86

    78c9f60d9a2049264e1209e275f41e71


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/azid.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • PhotoDVD/dcrawlib.dll
    .dll windows:4 windows x86 arch:x86

    440e341c7ad7f28c9c3bfff00953d6e8


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/deImgT10.dll
    .dll windows:4 windows x86 arch:x86

    f763b5b443036abb63704e689cb1d248


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/deImgT2X.dll
    .dll windows:4 windows x86 arch:x86

    5866793466a35bd215b567d883d05d4c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/deImgT32.dll
    .dll windows:4 windows x86 arch:x86

    a1faf00c42dda0b98d05c88084568207


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/deImgT33.dll
  • PhotoDVD/deImgT40.dll
    .dll windows:4 windows x86 arch:x86

    711e5a5a895091410ff63a5a40d40993


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/deImgT41.dll
    .dll windows:4 windows x86 arch:x86

    711e5a5a895091410ff63a5a40d40993


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/deImgT50.dll
    .dll windows:4 windows x86 arch:x86

    5605fad026576a64a0b3381122f8d391


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/deImgT60.dll
    .dll windows:4 windows x86 arch:x86

    5605fad026576a64a0b3381122f8d391


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/deImgT70.dll
    .dll windows:4 windows x86 arch:x86

    aff6e593b7262445e8319a01522b7113


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/deImgT71.dll
    .dll windows:4 windows x86 arch:x86

    f79984d85049158158bd72621629dd3a


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/deImgT72.dll
    .dll windows:4 windows x86 arch:x86

    147887aa1f264539395e25eeb351b153


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/f4cg.nfo
  • PhotoDVD/faac.dll
    .dll windows:4 windows x86 arch:x86

    4f6e3dd09ba6ef3c93e0bf3a050329a8


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/faad.dll
    .dll windows:4 windows x86 arch:x86

    ecf61c33693c171a38c55c9326496ac9


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/gdiplus.dll
    .dll windows:5 windows x86 arch:x86

    2a1ab6b72adad6b03d0746b0a5fa55d6


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/history.txt
  • PhotoDVD/ijl15.dll
    .dll windows:4 windows x86 arch:x86

    6b540d7d784d97e028bc85e2ab457662


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/imagemagick.dll
    .dll windows:4 windows x86 arch:x86

    62dd72764acac3a95b1efae9bad901ab


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/lang/Lang_Editor.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • PhotoDVD/lang/PHD_00000401.SPK
  • PhotoDVD/lang/PHD_00000404.SPK
  • PhotoDVD/lang/PHD_00000405.SPK
  • PhotoDVD/lang/PHD_00000406.SPK
  • PhotoDVD/lang/PHD_00000407.SPK
  • PhotoDVD/lang/PHD_00000409.SPK
  • PhotoDVD/lang/PHD_0000040C.SPK
  • PhotoDVD/lang/PHD_00000410.SPK
  • PhotoDVD/lang/PHD_00000411.SPK
  • PhotoDVD/lang/PHD_00000412.SPK
  • PhotoDVD/lang/PHD_00000413.SPK
  • PhotoDVD/lang/PHD_00000415.SPK
  • PhotoDVD/lang/PHD_00000418.SPK
  • PhotoDVD/lang/PHD_00000419.SPK
  • PhotoDVD/lang/PHD_0000041A.SPK
  • PhotoDVD/lang/PHD_0000041B.SPK
  • PhotoDVD/lang/PHD_0000041D.SPK
  • PhotoDVD/lang/PHD_00000424.SPK
  • PhotoDVD/lang/PHD_00000425.SPK
  • PhotoDVD/lang/PHD_00000804.SPK
  • PhotoDVD/lang/PHD_00000816.SPK
  • PhotoDVD/lang/PHD_00000C0A.SPK
  • PhotoDVD/lang/PHD_00002C0A.SPK
  • PhotoDVD/lang/PHD_ORIGINAL.SPK
  • PhotoDVD/lang/prefixes.ini
  • PhotoDVD/ogg.dll
    .dll windows:4 windows x86 arch:x86

    e87a509d84e588d396ae2732effae877


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/pcouffin.sys
    .sys windows:5 windows x86 arch:x86

    9c5c33979c6c6e68b0dcb696a62f5a20


    Headers

    Imports

    Sections

  • PhotoDVD/photodvd.txt
  • PhotoDVD/unins000.dat
  • PhotoDVD/unins000.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • PhotoDVD/vorbis.dll
    .dll windows:4 windows x86 arch:x86

    0d587ec2cbc497b890ef951bae4cefb5


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/vorbisfile.dll
    .dll windows:4 windows x86 arch:x86

    679aecba2ddbc33e6b4ca43fb581d3d5


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/vso_hwe.dll
    .dll windows:4 windows x86 arch:x86

    90e80f93b613c58301edeb3fef130b4c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/wm9stub.dll
    .dll windows:4 windows x86 arch:x86

    e770ab73ea2f83f7a8b5ae24fc253cd4


    Headers

    Imports

    Exports

    Sections

  • PhotoDVD/绿化说明.txt
  • common/VsoVprev.ax
    .dll regsvr32 windows:4 windows x86 arch:x86

    aa1342b3d2957f20b4b0a0db98976dcf


    Headers

    Imports

    Exports

    Sections

  • 安装说明.url
    .url