General

  • Target

    601f469c262920eafd51acc721c025e5_JaffaCakes118

  • Size

    1.2MB

  • MD5

    601f469c262920eafd51acc721c025e5

  • SHA1

    00b9ed8b2e9a24eff26ed588cc9213e3a76b2769

  • SHA256

    521386b3db2486a230be028b4a64c4498080a1aa61a10c8e50c1ce7aef39864e

  • SHA512

    d8dbdc9d37a2438e24e3927b50e3811265fed21ca50a7967ccbb0f5ef1f03e74800feb039c4cb06e08ef1b263d0fff2dc7242ff399974afd868e6c03c7274123

  • SSDEEP

    24576:FSKlMknuMVbO263JhI/Ezd7vmT9xMVThOrpUZNTDtMxtrNIux8NMhzTKDCvG8RHp:AKqkna26vsEz+x+ZNlMxtrw7DCvhp

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 4 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 11 IoCs

    Checks for missing Authenticode signature.

Files

  • 601f469c262920eafd51acc721c025e5_JaffaCakes118
    .zip
  • inoz2/01-INFO/01.htm
    .html
  • inoz2/01-INFO/02.htm
    .html
  • inoz2/02-ARTICLES/01.htm
    .html
  • inoz2/02-ARTICLES/01_files/IFS.ASM
  • inoz2/02-ARTICLES/01_files/api.asm
  • inoz2/02-ARTICLES/01_files/gdt.asm
  • inoz2/02-ARTICLES/01_files/idt.asm
  • inoz2/02-ARTICLES/01_files/ldt.asm
  • inoz2/02-ARTICLES/01_files/ring09x.inc
  • inoz2/02-ARTICLES/01_files/seh.asm
  • inoz2/02-ARTICLES/02.htm
    .html
  • inoz2/02-ARTICLES/02_files/ASM/make32.bat
  • inoz2/02-ARTICLES/02_files/ASM/ring0.asm
  • inoz2/02-ARTICLES/02_files/ASM/ring0.exe
    .exe windows:1 windows x86 arch:x86

    723ec71288e3e07030b25c9620121731


    Headers

    Imports

    Sections

  • inoz2/02-ARTICLES/02_files/ASM/ring0.lib
  • inoz2/02-ARTICLES/02_files/C/BACKUP.BAT
  • inoz2/02-ARTICLES/02_files/C/C0X32.ASM
  • inoz2/02-ARTICLES/02_files/C/C0X32.LIB
  • inoz2/02-ARTICLES/02_files/C/C0X32.OBJ
  • inoz2/02-ARTICLES/02_files/C/MAKE.BAT
    .bat .vbs
  • inoz2/02-ARTICLES/02_files/C/MAKEASM.BAT
    .bat .vbs
  • inoz2/02-ARTICLES/02_files/C/NATIVE.H
  • inoz2/02-ARTICLES/02_files/C/NTDLL.H
  • inoz2/02-ARTICLES/02_files/C/NTDLL.LIB
  • inoz2/02-ARTICLES/02_files/C/RTL.C
  • inoz2/02-ARTICLES/02_files/C/_RING0.C
  • inoz2/02-ARTICLES/02_files/C/_RING0.EXE
    .exe windows:4 windows x86 arch:x86

    fb4b48708698ac9041d3ea6cc69c24af


    Headers

    Imports

    Exports

    Sections

  • inoz2/02-ARTICLES/03.htm
    .html .js polyglot
  • inoz2/02-ARTICLES/03_files/Delphi/Collector.dpr
  • inoz2/02-ARTICLES/03_files/Delphi/ExtJpg.dpr
    .js
  • inoz2/02-ARTICLES/03_files/Delphi/Make.bat
  • inoz2/02-ARTICLES/03_files/Delphi/SIZE.INC
  • inoz2/02-ARTICLES/03_files/Delphi/jpeg.ASM
  • inoz2/02-ARTICLES/03_files/Delphi/jpeg.BAT
  • inoz2/02-ARTICLES/03_files/Delphi/jpeg.OBJ
  • inoz2/02-ARTICLES/03_files/Delphi/jpg.dpr
    .js
  • inoz2/02-ARTICLES/03_files/Delphi/vdxgroup.nfo
  • inoz2/02-ARTICLES/04.htm
    .html
  • inoz2/02-ARTICLES/04_files/api_const.inc
  • inoz2/02-ARTICLES/04_files/client.asm
  • inoz2/02-ARTICLES/04_files/client.exe
    .exe windows:1 windows x86 arch:x86

    db62f00e33e84c8187a145b1fd4b0d5a


    Headers

    Imports

    Sections

  • inoz2/02-ARTICLES/04_files/fmt.txt
  • inoz2/02-ARTICLES/04_files/server.asm
  • inoz2/02-ARTICLES/04_files/server.exe
    .exe windows:1 windows x86 arch:x86

    db62f00e33e84c8187a145b1fd4b0d5a


    Headers

    Imports

    Sections

  • inoz2/02-ARTICLES/04_files/util.inc
  • inoz2/02-ARTICLES/04_files/vrpc.inc
  • inoz2/02-ARTICLES/04_files/vrpc.txt
  • inoz2/02-ARTICLES/04_files/wsock32.lib
  • inoz2/02-ARTICLES/05.htm
    .html
  • inoz2/02-ARTICLES/06.htm
    .html
  • inoz2/02-ARTICLES/07.htm
    .html
  • inoz2/02-ARTICLES/07_files/alma.inc
  • inoz2/02-ARTICLES/07_files/belma.inc
  • inoz2/02-ARTICLES/07_files/sbvclib/sbvclib.inc
  • inoz2/02-ARTICLES/07_files/sbvclib/sbvclib.mac
  • inoz2/02-ARTICLES/07_files/sbvclib/sbvclib.txt
  • inoz2/02-ARTICLES/07_files/test.asm
  • inoz2/02-ARTICLES/07_files/test.exe
    .exe windows:1 windows x86 arch:x86

    f9ade0aa18f660a34a4fa23392e21838


    Headers

    Imports

    Sections

  • inoz2/02-ARTICLES/08.htm
    .html
  • inoz2/02-ARTICLES/09.htm
    .html
  • inoz2/03-OTHER/01.htm
    .html
  • inoz2/03-OTHER/01_files/edonkey2000.pas
  • inoz2/03-OTHER/01_files/mail.original.pas
  • inoz2/03-OTHER/01_files/mail.upgrade.pas
  • inoz2/03-OTHER/02.htm
    .html
  • inoz2/03-OTHER/03.htm
    .html
  • inoz2/03-OTHER/04.htm
    .html
  • inoz2/03-OTHER/05.htm
    .html
  • inoz2/03-OTHER/06.htm
    .html
  • inoz2/04-TOOLS/01.htm
    .html
  • inoz2/04-TOOLS/01_files/Collector.dpr
  • inoz2/04-TOOLS/01_files/Main.dcu
  • inoz2/04-TOOLS/01_files/Main.dfm
  • inoz2/04-TOOLS/01_files/Main.pas
  • inoz2/04-TOOLS/01_files/SIZE.INC
  • inoz2/04-TOOLS/01_files/gluer.dpr
  • inoz2/04-TOOLS/01_files/gluer.res
  • inoz2/04-TOOLS/01_files/gluerS.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • inoz2/04-TOOLS/01_files/gluerd.dpr
  • inoz2/04-TOOLS/01_files/nfo.nfo
  • inoz2/04-TOOLS/02.htm
    .html
  • inoz2/04-TOOLS/02_files/MailRipper.dpr
    .js
  • inoz2/04-TOOLS/02_files/MailRipper.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • inoz2/05-VIRUSES/01.htm
    .html
  • inoz2/05-VIRUSES/01_files/FarTF.dpr
    .js
  • inoz2/05-VIRUSES/01_files/FarTF.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • inoz2/05-VIRUSES/01_files/FarTF.nfo
  • inoz2/05-VIRUSES/01_files/reg.pas
  • inoz2/index.htm
    .html
  • inoz2/inoz2.css
  • inoz2/inoz2.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections