Overview

overview

7

Static

static

3

kaggo-setup.exe

windows7-x64

7

kaggo-setup.exe

windows10-2004-x64

7

//...ll.exe

windows7-x64

//...ll.exe

windows10-2004-x64

/Kaggo.exe

windows7-x64

/Kaggo.exe

windows10-2004-x64

/KaggoAgent01.dll

windows7-x64

/KaggoAgent01.dll

windows10-2004-x64

/kg_link.vbs

windows7-x64

/kg_link.vbs

windows10-2004-x64

/Insta...ns.dll

windows7-x64

/Insta...ns.dll

windows10-2004-x64

$_4741_/Ka...nt.dll

windows7-x64

6

$_4741_/Ka...nt.dll

windows10-2004-x64

6

新云软件.url

windows7-x64

1

新云软件.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    663b0f02ecc3ddfddd143bc40e1178a4_JaffaCakes118

  • Size

    1.5MB

  • MD5

    663b0f02ecc3ddfddd143bc40e1178a4

  • SHA1

    0d2f4f285c38027d72a579ad24056a35b559fa73

  • SHA256

    3025478925a025c34e98d6d25b46c689e69ad4714706560d3ba2eb6244863dee

  • SHA512

    e29794148d42f536b668e857ae96a0bfe7248ac3d3bba9f37ded5bfba00fc7d489622952ab32c0dffe60a1ab8d2581bc22afee1e162c9c4929aee1307b556db6

  • SSDEEP

    24576:iVZP9sMfXlz9+WhjBnOJ8tC7px8fSBXhMzojkRWPTGrCVMwL/HskmecIHUvf:iVZP9sm1z99dYJACL8fho9UCnTP/Uvf

Score
3/10

Malware Config

Signatures

  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 663b0f02ecc3ddfddd143bc40e1178a4_JaffaCakes118
    .rar
  • kaggo-setup.exe
    .exe windows:4 windows x86 arch:x86

    81c812ed76d4690c8678b3a4f0737a5f


    Headers

    Imports

    Sections

  • //uninstall.exe
    .exe windows:4 windows x86 arch:x86

    81c812ed76d4690c8678b3a4f0737a5f


    Headers

    Imports

    Sections

  • /modern-header.bmp
  • /Data/AllDone.wav
  • /Data/ServerCache.dat
  • /Data/TaskDone.wav
  • /Kaggo.exe
    .exe windows:4 windows x86 arch:x86

    63e4a4e3814d31933f2d423369920d9a


    Headers

    Imports

    Sections

  • /KaggoAgent01.ocx
    .dll regsvr32 windows:4 windows x86 arch:x86

    7bcfcaaf96655769c4cafa97af3eac15


    Headers

    Imports

    Exports

    Sections

  • /Schemas/application.ico
  • /Schemas/application.xml
  • /Schemas/application.xsd
    .xml
  • /Schemas/audio.ico
  • /Schemas/audio.xml
  • /Schemas/audio.xsd
    .xml
  • /Schemas/audio1.ico
  • /Schemas/book.ICO
  • /Schemas/book.xml
  • /Schemas/book.xsd
    .xml
  • /Schemas/book1.ICO
  • /Schemas/downloadRoot.ico
  • /Schemas/downloadRoot.xml
  • /Schemas/downloadRoot.xsd
    .xml
  • /Schemas/downloadedGame.xml
  • /Schemas/downloadedGame.xsd
    .xml
  • /Schemas/downloadedMovie.xml
  • /Schemas/downloadedMovie.xsd
    .xml
  • /Schemas/downloadedMusic.xml
  • /Schemas/downloadedMusic.xsd
    .xml
  • /Schemas/downloadedRoot.xml
  • /Schemas/downloadedRoot.xsd
    .xml
  • /Schemas/downloadedSoftware.xml
  • /Schemas/downloadedSoftware.xsd
    .xml
  • /Schemas/downloading.ico
  • /Schemas/downloading.xml
  • /Schemas/downloading.xsd
    .xml
  • /Schemas/image.ico
  • /Schemas/image.xml
  • /Schemas/image.xsd
    .xml
  • /Schemas/rubbish.ico
  • /Schemas/rubbish.xml
  • /Schemas/rubbish.xsd
    .xml
  • /Schemas/video.ico
  • /Schemas/video.xml
  • /Schemas/video.xsd
    .xml
  • /kg_link.htm
    .vbs
  • /InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    7ca439f240520f2b3eaee86b88d31ab2


    Headers

    Imports

    Exports

    Sections

  • /ioSpecial.ini
  • /modern-header.bmp
  • /modern-wizard.bmp
  • $_4741_/KaggoAgent.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    ea8497c8cd368c11199a9f8ad9a8cfd3


    Headers

    Imports

    Exports

    Sections

  • 新云软件.url
    .url