Overview

overview

8

Static

static

3

360AvFlt.dll

windows7-x64

3

360AvFlt.dll

windows10-2004-x64

3

360AvFlt.sys

windows7-x64

1

360AvFlt.sys

windows10-2004-x64

1

360FileGuard.exe

windows7-x64

3

360FileGuard.exe

windows10-2004-x64

3

360QVM.dll

windows7-x64

3

360QVM.dll

windows10-2004-x64

3

360rp.dll

windows7-x64

3

360rp.dll

windows10-2004-x64

3

360rp.exe

windows7-x64

8

360rp.exe

windows10-2004-x64

8

360rps.exe

windows7-x64

3

360rps.exe

windows10-2004-x64

3

360sd.exe

windows7-x64

6

360sd.exe

windows10-2004-x64

6

360sdToasts.exe

windows7-x64

1

360sdToasts.exe

windows10-2004-x64

3

7z.dll

windows7-x64

3

7z.dll

windows10-2004-x64

3

AVEI.dll

windows7-x64

3

AVEI.dll

windows10-2004-x64

3

AVEngine.dll

windows7-x64

3

AVEngine.dll

windows10-2004-x64

3

CrashReport.dll

windows7-x64

5

CrashReport.dll

windows10-2004-x64

5

FsrMgr.dll

windows7-x64

3

FsrMgr.dll

windows10-2004-x64

3

MbrScan.dll

windows7-x64

3

MbrScan.dll

windows10-2004-x64

3

MenuEx.dll

windows7-x64

3

MenuEx.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    83bf01bb892c65cc77c49de08c55b2f5_JaffaCakes118

  • Size

    7.0MB

  • MD5

    83bf01bb892c65cc77c49de08c55b2f5

  • SHA1

    a5fc171590394157fcb1ac1fbb0b6e6908216645

  • SHA256

    60ba68b6f683de3be877d095996e7b45e4737c2abc7c1cf0d16d20acc512ca06

  • SHA512

    a148b22bceedb272b56cf6be7c6145981ff6986ef1862e187577858822674251dc4bd8270ddc2c42e1a3c578ea31282dae485a753f76bda3df260c1b615f2df1

  • SSDEEP

    196608:gJmQp8yXQAif1FlubLC7t1laoQfHAXV7OwPXsnN:A8yXQAifpYC7taoGglTXsnN

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 83bf01bb892c65cc77c49de08c55b2f5_JaffaCakes118
    .7z
  • 360AvFlt.dll
    .dll windows:6 windows x86 arch:x86

    dc051cc395dae715c9cd16c681337892


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • 360AvFlt.sys
    .sys windows:6 windows x86 arch:x86

    f43db2fbdffb5ea34319db6fc3a85370


    Code Sign

    Headers

    Imports

    Sections

  • 360FileGuard.exe
    .exe windows:5 windows x86 arch:x86

    4ef08c387a5e4b50d2c27a46e8977295


    Code Sign

    Headers

    Imports

    Sections

  • 360QVM.dll
    .dll windows:5 windows x86 arch:x86

    dd927387770df81b48eb325ad67f190d


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • 360rp.dll
    .dll windows:5 windows x86 arch:x86

    9f8917b185bac7129fcb8ac78907e32f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • 360rp.exe
    .exe windows:5 windows x86 arch:x86

    e02613afaf877d7fa81a5d24098f8fb4


    Code Sign

    Headers

    Imports

    Sections

  • 360rps.exe
    .exe windows:5 windows x86 arch:x86

    9c45c3bf60d1b93ab90bf8687ebb829e


    Code Sign

    Headers

    Imports

    Sections

  • 360sd.exe
    .exe windows:5 windows x86 arch:x86

    c7325ac0164f8d2f9f24ebe3d8af381f


    Code Sign

    Headers

    Imports

    Sections

  • 360sdToasts.exe
    .exe windows:6 windows x86 arch:x86

    f36ca611a420faa73d0befc0053de080


    Code Sign

    Headers

    Imports

    Sections

  • 360sduac.dat
  • 7z.dll
    .dll windows:5 windows x86 arch:x86

    6602318a8f48f8edc96e39af0a5a3753


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • AVEI.dll
    .dll windows:5 windows x86 arch:x86

    ce8d9e7b01dc62f0aabe813556d8710b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • AVEngine.dll
    .dll windows:5 windows x86 arch:x86

    57cb30eaff8a5407f40784bf45d6a520


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • CrashReport.dll
    .dll windows:5 windows x86 arch:x86

    183c0225917db95d1c9d8d1a561aad9f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • FsrMgr.dll
    .dll windows:5 windows x86 arch:x86

    2667bd9b258e33ae4bfe1f41175d2d0f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • MbrScan.dll
    .dll windows:5 windows x86 arch:x86

    f887f6831d5b0c09f10fbb12f292e008


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • MenuEx.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    4a49ea486a6ddbfc9dd7c7ad3f934a92


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • MethodMsgBox.dll
    .dll windows:5 windows x86 arch:x86

    d37c6cd4f4de927e08196a774da1721f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • QEX.dll
    .dll windows:5 windows x86 arch:x86

    f7b5a11478ac7283436a4683bccefa2c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDPlugin/AdPopWnd.dll
    .dll windows:5 windows x86 arch:x86

    d500904fa6a15629bb20cd2b9b31b3b0


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDPlugin/AntiDel.dll
    .dll windows:5 windows x86 arch:x86

    ca0d7f36e00d8765a66567d5a1cde3c6


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDPlugin/BlackDns.dll
    .dll windows:5 windows x86 arch:x86

    edac2f93dd8bbf0575426983be2f7543


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDPlugin/BundSoft.dll
    .dll windows:5 windows x86 arch:x86

    c2d06671526e026b4bea41c43f916369


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDPlugin/DisStartup.dll
    .dll windows:5 windows x86 arch:x86

    3803260d1821096f6af31ff0d9586137


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDPlugin/DiskErr.dll
    .dll windows:5 windows x86 arch:x86

    dd06da2677a99fd3411704cfd6a9fa71


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDPlugin/QMachine.dll
    .dll windows:5 windows x86 arch:x86

    74161b12708a16e2d1491036c2975cc1


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDPlugin/SyncTime.dll
    .dll windows:5 windows x86 arch:x86

    854ed842ba285768fe978664454df544


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDPlugin/SysDump.dll
    .dll windows:5 windows x86 arch:x86

    d03f24c2769a90c807d6aeeaddab5912


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDPlugin/VolSpace.dll
    .dll windows:5 windows x86 arch:x86

    ccbe34c95cff0e08fb154d33d1d75f6c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SDVersion.dll
    .dll windows:5 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • ShellIco.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    cca8b3a14d36767919b28b34e8f8948f


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SpeedNpe.dll
    .dll windows:5 windows x86 arch:x86

    2e431ed21291c846ae7e8124fdd42c0c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • WhiteCache.dll
    .dll windows:5 windows x86 arch:x86

    42e83961d060a0e0671c09888316718d


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • deepscan/BAPIDRV.sys
    .sys windows:5 windows x86 arch:x86

    a538312a6d0ad5b1671a1c7ad06c9d9f


    Code Sign

    Headers

    Imports

    Sections

  • deepscan/WiFiSafe.dll
    .dll windows:5 windows x86 arch:x86

    044bf1fe82d2e41cd04e729ced7790e8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • deepscan/jcloudscan.dll
    .dll windows:5 windows x86 arch:x86

    b526285579323e824d21112d19afb738


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • deepscan/sdcsp.dat
  • dsplugins.dll
    .dll windows:5 windows x86 arch:x86

    df8a39f6d555f473ae4061a40bbdc645


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • dynlenv.dll
    .dll windows:5 windows x86 arch:x86

    87fc4450eafd884b9231c1769147c9a5


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • firstaid/Fix/AntiWriteBack.dll
    .dll windows:5 windows x86 arch:x86

    cdcbc512cd8327d1f5b9aa4d42b9eee3


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • firstaid/Fix/BFsAndReg.dll
    .dll windows:5 windows x86 arch:x86

    eba536689fca04d464f66a56d2e84022


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • firstaid/Fix/CQhCltHttpW.dll
    .dll windows:5 windows x86 arch:x86

    bbb8a93e831f1e8cf13293fa1213976e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • firstaid/SuperKiller.exe
    .exe windows:5 windows x86 arch:x86

    915d13d34635fdbf96af478b97a02437


    Code Sign

    Headers

    Imports

    Sections

  • firstaid/msvcirt.dll
    .dll windows:5 windows x86 arch:x86

    c9e4d1c3c611270cb8fe488259e71c2a


    Headers

    Imports

    Exports

    Sections

  • firstaid/usp10.dll
    .dll windows:4 windows x86 arch:x86

    75c0b15ae36c86b554cf277988432bf3


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • immplugin/AntiInstall.dll
    .dll windows:5 windows x86 arch:x86

    e431df880f78ce120860fb618082dd95


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • immplugin/BrowserAdBlocker.dll
    .dll windows:5 windows x86 arch:x86

    36de1dbeaa983f606824f871d171e297


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • immplugin/Dllhijack.dll
    .dll windows:5 windows x86 arch:x86

    9220075dc217495e8928bd090c6eeda8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • immplugin/OfficeMacro.dll
    .dll windows:5 windows x86 arch:x86

    13dbed67abe2e6c33fcad7a831ddd438


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • immplugin/ProcTip.dll
    .dll windows:5 windows x86 arch:x86

    b203ea09ba3e470f76d61bfa0aaa576c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • pluginmgr.dll
    .dll windows:5 windows x86 arch:x86

    6ee9a8214e5c93eff0a0d1905644f5b9


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • savapi/AVPack.dll
    .dll windows:4 windows x86 arch:x86

    2a3f3abe84f3e41ea2366dba69891470


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • scanstg.dll
    .dll windows:5 windows x86 arch:x86

    8766f4d374f055dd6d001697acffc102


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • tools.dat
  • unrar.dll
    .dll windows:5 windows x86 arch:x86

    8995d4cf448c7562e91f4257c6463d9b


    Code Sign

    Headers

    Imports

    Exports

    Sections