Overview

overview

3

Static

static

1

data/templ...et.ps1

windows7-x64

3

data/templ...et.ps1

windows10-2004-x64

3

data/templ...il.ps1

windows7-x64

3

data/templ...il.ps1

windows10-2004-x64

3

data/templ...ld.ps1

windows7-x64

3

data/templ...ld.ps1

windows10-2004-x64

3

data/templ...on.ps1

windows7-x64

3

data/templ...on.ps1

windows10-2004-x64

3

lib/rex/po...nd.ps1

windows7-x64

3

lib/rex/po...nd.ps1

windows10-2004-x64

3

lib/rex/po...ut.ps1

windows7-x64

3

lib/rex/po...ut.ps1

windows10-2004-x64

3

lib/rex/po...ds.ps1

windows7-x64

3

lib/rex/po...ds.ps1

windows10-2004-x64

3

lib/rex/po...pt.ps1

windows7-x64

3

lib/rex/po...pt.ps1

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    a1bd98cf251dc15abcaf033cdd9ddd96_JaffaCakes118

  • Size

    28KB

  • MD5

    a1bd98cf251dc15abcaf033cdd9ddd96

  • SHA1

    0dc4e020da9ba7a1b51721c2ddc953581cf7b6c0

  • SHA256

    1a5c789b40a7b4a97ea7b01d63d199601f826bfd1e921c89c08af3d7b97da25d

  • SHA512

    f30eb1b4a811169867dc14f7994405710748500fd4cd2a2a5508f2522de082f0db53ec26bdf4bd3bc5ea5bf09834680e32b105899a7db5dd358414641ea13e8d

  • SSDEEP

    384:QBblinKynGr6LvDeT7yvvpcKv9/N/QdsDOytkUSN3pUE4XxhAB8/0zaXoM:TnMyeT7yH689/NYdZyyULXxaBfRM

Score
1/10

Malware Config

Signatures

Files

  • a1bd98cf251dc15abcaf033cdd9ddd96_JaffaCakes118
    .tar
  • checksums.yaml.gz
    .gz
  • checksums.yaml
  • checksums.yaml.gz.sig
  • data.tar.gz
    .gz
  • data.tar
    .tar .ps1 polyglot
  • .gitignore
  • .rspec
  • .travis.yml
  • CODE_OF_CONDUCT.md
  • Gemfile
  • LICENSE
  • README.md
  • Rakefile
  • data/templates/to_mem_dotnet.ps1.template
    .ps1
  • data/templates/to_mem_msil.ps1.template
    .ps1
  • data/templates/to_mem_old.ps1.template
    .ps1
  • data/templates/to_mem_pshreflection.ps1.template
    .ps1
  • lib/rex/powershell.rb
  • lib/rex/powershell/command.rb
    .ps1
  • lib/rex/powershell/function.rb
  • lib/rex/powershell/obfu.rb
  • lib/rex/powershell/output.rb
    .ps1
  • lib/rex/powershell/param.rb
  • lib/rex/powershell/parser.rb
  • lib/rex/powershell/payload.rb
  • lib/rex/powershell/psh_methods.rb
    .ps1
  • lib/rex/powershell/script.rb
    .ps1
  • lib/rex/powershell/templates.rb
  • lib/rex/powershell/version.rb
  • rex-powershell.gemspec
  • data.tar.gz.sig
  • metadata.gz
    .gz
  • metadata
  • metadata.gz.sig