Overview

overview

7

Static

static

7

ok/gulu.exe

windows7-x64

7

ok/gulu.exe

windows10-2004-x64

7

ok/help/11.htm

windows7-x64

3

ok/help/11.htm

windows10-2004-x64

3

ok/非常�...��.url

windows7-x64

1

ok/非常�...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    6f33ecb09054d1792644960edf609c23_JaffaCakes118

  • Size

    2.7MB

  • MD5

    6f33ecb09054d1792644960edf609c23

  • SHA1

    b9876ecc9602399273bf0410db181751799cd8bd

  • SHA256

    d4a60fb4fe24efba87845e86b9015eb900d86a39a4e7a3f5175d61322120c15f

  • SHA512

    cc3a49d9d80e3f884629ea9ac6a45f1fc48d8e13ab627f223581db521b94aeb842b59641a8b4d63b56317d2914e69f518093e8138c65d93988ef7b7b375f5388

  • SSDEEP

    49152:KmbinECYbbRM+0yPy+R0nOU9gV+hArVV/5tLoAUUJM7Om/fZOYWOkvcrSjFx4tb:pbin1Yqey+mnOUaghArV7tLoMhg0YQUB

Score
7/10
aspackv2

Malware Config

Signatures

  • ASPack v2.12-2.42 1 IoCs

    Detects executables packed with ASPack v2.12-2.42

    aspackv2
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 6f33ecb09054d1792644960edf609c23_JaffaCakes118
    .rar
  • ok/01.jpg
    .jpg
  • ok/02.jpg
    .jpg
  • ok/1.wav
  • ok/2.wav
  • ok/DigitFont.TTF
  • ok/config.ini
  • ok/fish.swf
  • ok/gulu.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • ok/help/11.htm
    .html
  • ok/help/Thumbs.db
  • ok/help/image002.jpg
    .jpg
  • ok/help/image011.jpg
    .jpg
  • ok/help/image012.jpg
    .jpg
  • ok/help/image013.jpg
    .jpg
  • ok/help/image015.jpg
    .jpg
  • ok/system.dat
  • ok/下载说明.htm
    .html .js polyglot
  • ok/规则.txt
  • ok/非常世纪资源网.url
    .url