Overview

overview

7

Static

static

7

Timeshift_...ig.ps1

windows7-x64

3

Timeshift_...ig.ps1

windows10-2004-x64

3

Timeshift_...ig.exe

windows7-x64

7

Timeshift_...ig.exe

windows10-2004-x64

7

Timeshift_...sh.exe

windows7-x64

3

Timeshift_...sh.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    73a347c1e5bb97db9634d5c58bb3dba4_JaffaCakes118

  • Size

    684KB

  • MD5

    73a347c1e5bb97db9634d5c58bb3dba4

  • SHA1

    2480eb683a2a40db6f845e6a65c0c36d571341e6

  • SHA256

    ea295b0d11458bb0c8b2fc6f37488ce09b994df2ca1500f43e0524514b3bb505

  • SHA512

    2a5f675c3d0a3a9fd17e714a091d99d0c7d6e8601cccd7f7cc164a5e53c684243d3136ea7f3614ccee0cde99751a1d1ad6edb9dbd4199713f27f1e71dee6b40a

  • SSDEEP

    12288:xH8i6difXgwHtSSH29frfAxbjczfVX61KCBlWs8DDFIjYdiSZr5PBjf5G:58lYXgotSSHCjAWw15BQswD12

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 73a347c1e5bb97db9634d5c58bb3dba4_JaffaCakes118
    .zip
  • Timeshift_Calendar_v2.0/Fonts/MICROGME.TTF
  • Timeshift_Calendar_v2.0/Fonts/TENGWAR3.TTF
  • Timeshift_Calendar_v2.0/Fonts/TENGWAR4.TTF
  • Timeshift_Calendar_v2.0/Fonts/TENGWAR5.TTF
  • Timeshift_Calendar_v2.0/Fonts/tengtelc.ttf
  • Timeshift_Calendar_v2.0/Fonts/tengtelcb.ttf
  • Timeshift_Calendar_v2.0/Rainstaller.cfg
  • Timeshift_Calendar_v2.0/Skins/Timeshift_Calendar_v2.0/Configure/RainConfigure.cfg
  • Timeshift_Calendar_v2.0/Skins/Timeshift_Calendar_v2.0/Configure/UserVariables.inc
  • Timeshift_Calendar_v2.0/Skins/Timeshift_Calendar_v2.0/Configure/config.au3
    .ps1
  • Timeshift_Calendar_v2.0/Skins/Timeshift_Calendar_v2.0/Configure/config.exe
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • Timeshift_Calendar_v2.0/Skins/Timeshift_Calendar_v2.0/Configure/credits for configure tool.txt
  • Timeshift_Calendar_v2.0/Skins/Timeshift_Calendar_v2.0/Configure/header.jpg
    .jpg
  • Timeshift_Calendar_v2.0/Skins/Timeshift_Calendar_v2.0/Configure/refresh.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • Timeshift_Calendar_v2.0/Skins/Timeshift_Calendar_v2.0/Configure/settings.ini
  • Timeshift_Calendar_v2.0/Skins/Timeshift_Calendar_v2.0/Kalendar-deutsch.ini
  • Timeshift_Calendar_v2.0/Skins/Timeshift_Calendar_v2.0/calendar-english.ini