Overview

overview

7

Static

static

7

IEGuard/AdKiller.exe

windows7-x64

3

IEGuard/AdKiller.exe

windows10-2004-x64

3

IEGuard/IEGuard.chm

windows7-x64

1

IEGuard/IEGuard.chm

windows10-2004-x64

1

IEGuard/IEGuard.exe

windows7-x64

3

IEGuard/IEGuard.exe

windows10-2004-x64

3

IEGuard/IEGuard.url

windows7-x64

6

IEGuard/IEGuard.url

windows10-2004-x64

3

IEGuard/Process.exe

windows7-x64

3

IEGuard/Process.exe

windows10-2004-x64

3

IEGuard/St...er.exe

windows7-x64

3

IEGuard/St...er.exe

windows10-2004-x64

3

IEGuard/iehook.dll

windows7-x64

1

IEGuard/iehook.dll

windows10-2004-x64

1

IEGuard/ms.htm

windows7-x64

3

IEGuard/ms.htm

windows10-2004-x64

3

IEGuard/�...��.url

windows7-x64

1

IEGuard/�...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    6ef5f6142dc19c54f6cfb8db34d1a640_JaffaCakes118

  • Size

    1.1MB

  • MD5

    6ef5f6142dc19c54f6cfb8db34d1a640

  • SHA1

    887b223dfc2e1ad51f4db56f7e4d2878976fbccf

  • SHA256

    0be366085a003b0349be320b0142e78caad058bfce4a15f69f5d66b5fd9c517b

  • SHA512

    2d34a9bc03dd114ee781ceaa53e936809eb061dde2192b74e2b0d8a7cf9e81df2db44053f1701052c1d80e8d39f3f9e076fb2ca7959ae16ebafe78cd6adc7b14

  • SSDEEP

    24576:cTKuiP1+vc9b3x6kiTYrGA7GxYHEac7G9dTpyS6DvaLcOGL5O:gKuiPQSKzAQFayYBJ6DS4m

Score
7/10
aspackv2

Malware Config

Signatures

  • ASPack v2.12-2.42 4 IoCs

    Detects executables packed with ASPack v2.12-2.42

    aspackv2
  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • 6ef5f6142dc19c54f6cfb8db34d1a640_JaffaCakes118
    .rar
  • IEGuard/AdKiller.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • IEGuard/IEGuard.chm
    .chm
  • IEGuard/IEGuard.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • IEGuard/IEGuard.url
  • IEGuard/License.txt
  • IEGuard/Process.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • IEGuard/StartUpManager.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • IEGuard/iehook.dll
  • IEGuard/ms.htm
  • IEGuard/新云软件.url
    .url