Overview

overview

7

Static

static

7

Aeternus B...fo.pdf

windows7-x64

3

Aeternus B...fo.pdf

windows10-2004-x64

3

Aeternus B...Ti.chm

windows7-x64

1

Aeternus B...Ti.chm

windows10-2004-x64

1

Aeternus B...mo.dll

windows7-x64

3

Aeternus B...mo.dll

windows10-2004-x64

3

License Ag...ss.pdf

windows7-x64

3

License Ag...ss.pdf

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    784611e0020a1b73ebb85458f326f2f9_JaffaCakes118

  • Size

    11.4MB

  • MD5

    784611e0020a1b73ebb85458f326f2f9

  • SHA1

    5acb1ecb27fc7aba0081fe4637b6dd0c3f1f7ce3

  • SHA256

    cd043cff7613cabdcb286827bf89c12c3ee700f703ec078542dd3c1f8adf82bb

  • SHA512

    b7fac281dd70114fd5092a95aa8f77e067d78b215d1df14356558a2a0b9fbb5086c3b0fbb8ae347dc6a028e7f0ae14b0886fa6d085b5d64cbdcc9ae35f91ebab

  • SSDEEP

    196608:H1bsUpl2ZDWcIimncHEev2tsNsws2t+PfOu+gg92CuMAXQ25myKAjD0Ozafkc:Nsmwxx9mnzeR+fXPfOlHpuMAA25mdvOY

Score
7/10
pdflink

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 784611e0020a1b73ebb85458f326f2f9_JaffaCakes118
    .zip
  • Aeternus Brass VSTi Info.pdf
    .pdf

    • http://download.syntheway.net

    • http://faq.syntheway.net

    • http://shop.syntheway.net

    • http://syntheway.net

    • http://www.paypal.com

    • http://www.syntheway.com

    • http://www.syntheway.net

  • Aeternus Brass VSTi.CHM
    .chm
  • Aeternus Brass demo.dll
    .dll windows:4 windows x86 arch:x86

    fdbfec85672f73d2a4d49635454936d4


    Headers

    Imports

    Exports

    Sections

  • License Agreement - Aeternus Brass.pdf
    .pdf

    • http://syntheway.net

    • http://www.syntheway.com

    • http://www.syntheway.net