Overview

overview

7

Static

static

7

cvery.comd...GFp.js

windows7-x64

3

cvery.comd...GFp.js

windows10-2004-x64

3

cvery.comd...nse.js

windows7-x64

3

cvery.comd...nse.js

windows10-2004-x64

3

cvery.comd...her.js

windows7-x64

3

cvery.comd...her.js

windows10-2004-x64

3

cvery.comd...ils.js

windows7-x64

3

cvery.comd...ils.js

windows10-2004-x64

3

cvery.comd...GFp.js

windows7-x64

3

cvery.comd...GFp.js

windows10-2004-x64

3

cvery.comd...nse.js

windows7-x64

3

cvery.comd...nse.js

windows10-2004-x64

3

cvery.comd...her.js

windows7-x64

3

cvery.comd...her.js

windows10-2004-x64

3

cvery.comd...ils.js

windows7-x64

3

cvery.comd...ils.js

windows10-2004-x64

3

cvery.comd...GFp.js

windows7-x64

3

cvery.comd...GFp.js

windows10-2004-x64

3

cvery.comd...nse.js

windows7-x64

3

cvery.comd...nse.js

windows10-2004-x64

3

cvery.comd...her.js

windows7-x64

3

cvery.comd...her.js

windows10-2004-x64

3

cvery.comd...ils.js

windows7-x64

3

cvery.comd...ils.js

windows10-2004-x64

3

cvery.comd...GFp.js

windows7-x64

3

cvery.comd...GFp.js

windows10-2004-x64

3

cvery.comd...nse.js

windows7-x64

3

cvery.comd...nse.js

windows10-2004-x64

3

cvery.comd...her.js

windows7-x64

3

cvery.comd...her.js

windows10-2004-x64

3

cvery.comd...ils.js

windows7-x64

3

cvery.comd...ils.js

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    a3b49e3dc0c6ac28c4b88a3dbd263f18_JaffaCakes118

  • Size

    4.7MB

  • MD5

    a3b49e3dc0c6ac28c4b88a3dbd263f18

  • SHA1

    7682d5973a9c0307830fc6462006cd79b22ea587

  • SHA256

    d0acde013dd4abee7a86631b7dc90d49fc28739d545aac74accf207ebb32bd0e

  • SHA512

    2a431d586c4b0e607d0eaca84f3ee39b6e0517d1e2a1ab0e3d48d2fd2df84661757b06c083a5f55fc7fb9e976a6df86d38f9f01de3c8b60304eaf5aa305a07a9

  • SSDEEP

    98304:CltB4TBfllILS0AiSjkSp97eB/ADWKf/XIBm6mGGO7pE2RC3OGHTXzK3pR6:CltBefSO0aFyADH/4BcCm2wTHbOZR6

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • a3b49e3dc0c6ac28c4b88a3dbd263f18_JaffaCakes118
    .rar
  • cvery.comd324999576/Application Profiles/Demo2.iap
  • cvery.comd324999576/C++ Builder 5/AES_Rijndael.dcu
  • cvery.comd324999576/C++ Builder 5/AES_Rijndael.hpp
  • cvery.comd324999576/C++ Builder 5/AES_Rijndael.obj
  • cvery.comd324999576/C++ Builder 5/AES_Rijndael.pas
  • cvery.comd324999576/C++ Builder 5/ECElGamal.dcu
  • cvery.comd324999576/C++ Builder 5/ECElGamal.hpp
  • cvery.comd324999576/C++ Builder 5/ECElGamal.obj
  • cvery.comd324999576/C++ Builder 5/ECElGamal.pas
  • cvery.comd324999576/C++ Builder 5/ECGFp.dcu
  • cvery.comd324999576/C++ Builder 5/ECGFp.hpp
  • cvery.comd324999576/C++ Builder 5/ECGFp.obj
  • cvery.comd324999576/C++ Builder 5/ECGFp.pas
    .js
  • cvery.comd324999576/C++ Builder 5/FGInt.dcu
  • cvery.comd324999576/C++ Builder 5/FGInt.hpp
  • cvery.comd324999576/C++ Builder 5/FGInt.obj
  • cvery.comd324999576/C++ Builder 5/FGInt.pas
  • cvery.comd324999576/C++ Builder 5/FPrimeGeneration.dcu
  • cvery.comd324999576/C++ Builder 5/FPrimeGeneration.hpp
  • cvery.comd324999576/C++ Builder 5/FPrimeGeneration.obj
  • cvery.comd324999576/C++ Builder 5/FPrimeGeneration.pas
  • cvery.comd324999576/C++ Builder 5/ICE_CB5.obj
  • cvery.comd324999576/C++ Builder 5/ICEv2_CB5.bpk
    .xml
  • cvery.comd324999576/C++ Builder 5/ICEv2_CB5.cpp
  • cvery.comd324999576/C++ Builder 5/ICEv2_CB5.obj
  • cvery.comd324999576/C++ Builder 5/ICEv2_CB5.res
  • cvery.comd324999576/C++ Builder 5/IceLicense.dcr
  • cvery.comd324999576/C++ Builder 5/IceLicense.dcu
  • cvery.comd324999576/C++ Builder 5/IceLicense.hpp
  • cvery.comd324999576/C++ Builder 5/IceLicense.inc
  • cvery.comd324999576/C++ Builder 5/IceLicense.obj
  • cvery.comd324999576/C++ Builder 5/IceLicense.pas
    .js
  • cvery.comd324999576/C++ Builder 5/LbBF.inc
  • cvery.comd324999576/C++ Builder 5/LbRDL.inc
  • cvery.comd324999576/C++ Builder 5/LbxCipher.dcu
  • cvery.comd324999576/C++ Builder 5/LbxCipher.hpp
  • cvery.comd324999576/C++ Builder 5/LbxCipher.obj
  • cvery.comd324999576/C++ Builder 5/LbxCipher.pas
    .js
  • cvery.comd324999576/C++ Builder 5/LbxClass.dcu
  • cvery.comd324999576/C++ Builder 5/LbxClass.hpp
  • cvery.comd324999576/C++ Builder 5/LbxClass.obj
  • cvery.comd324999576/C++ Builder 5/LbxClass.pas
  • cvery.comd324999576/C++ Builder 5/LbxConst.dcu
  • cvery.comd324999576/C++ Builder 5/LbxConst.hpp
  • cvery.comd324999576/C++ Builder 5/LbxConst.obj
  • cvery.comd324999576/C++ Builder 5/LbxConst.pas
  • cvery.comd324999576/C++ Builder 5/LbxProc.dcu
  • cvery.comd324999576/C++ Builder 5/LbxProc.hpp
  • cvery.comd324999576/C++ Builder 5/LbxProc.obj
  • cvery.comd324999576/C++ Builder 5/LbxProc.pas
  • cvery.comd324999576/C++ Builder 5/LbxString.dcu
  • cvery.comd324999576/C++ Builder 5/LbxString.hpp
  • cvery.comd324999576/C++ Builder 5/LbxString.obj
  • cvery.comd324999576/C++ Builder 5/LbxString.pas
  • cvery.comd324999576/C++ Builder 5/LbxUtils.dcu
  • cvery.comd324999576/C++ Builder 5/LbxUtils.hpp
  • cvery.comd324999576/C++ Builder 5/LbxUtils.obj
  • cvery.comd324999576/C++ Builder 5/LbxUtils.pas
    .js
  • cvery.comd324999576/C++ Builder 5/LockBox.inc
  • cvery.comd324999576/C++ Builder 5/NetworkTCP.dcr
  • cvery.comd324999576/C++ Builder 5/NetworkTCP.dcu
  • cvery.comd324999576/C++ Builder 5/NetworkTCP.hpp
  • cvery.comd324999576/C++ Builder 5/NetworkTCP.obj
  • cvery.comd324999576/C++ Builder 5/NetworkTCP.pas
  • cvery.comd324999576/Delphi 5/AES_Rijndael.dcu
  • cvery.comd324999576/Delphi 5/AES_Rijndael.pas
  • cvery.comd324999576/Delphi 5/ECElGamal.dcu
  • cvery.comd324999576/Delphi 5/ECElGamal.pas
  • cvery.comd324999576/Delphi 5/ECGFp.dcu
  • cvery.comd324999576/Delphi 5/ECGFp.pas
    .js
  • cvery.comd324999576/Delphi 5/FGInt.dcu
  • cvery.comd324999576/Delphi 5/FGInt.pas
  • cvery.comd324999576/Delphi 5/FPrimeGeneration.dcu
  • cvery.comd324999576/Delphi 5/FPrimeGeneration.pas
  • cvery.comd324999576/Delphi 5/ICEv2_D5.cfg
  • cvery.comd324999576/Delphi 5/ICEv2_D5.dcu
  • cvery.comd324999576/Delphi 5/ICEv2_D5.dof
  • cvery.comd324999576/Delphi 5/ICEv2_D5.dpk
  • cvery.comd324999576/Delphi 5/ICEv2_D5.res
  • cvery.comd324999576/Delphi 5/IceBegin.Inc
  • cvery.comd324999576/Delphi 5/IceEnd.Inc
  • cvery.comd324999576/Delphi 5/IceLicense.dcr
  • cvery.comd324999576/Delphi 5/IceLicense.dcu
  • cvery.comd324999576/Delphi 5/IceLicense.inc
  • cvery.comd324999576/Delphi 5/IceLicense.pas
    .js
  • cvery.comd324999576/Delphi 5/LbBF.inc
  • cvery.comd324999576/Delphi 5/LbRDL.inc
  • cvery.comd324999576/Delphi 5/LbxCipher.dcu
  • cvery.comd324999576/Delphi 5/LbxCipher.pas
    .js
  • cvery.comd324999576/Delphi 5/LbxClass.dcu
  • cvery.comd324999576/Delphi 5/LbxClass.pas
  • cvery.comd324999576/Delphi 5/LbxConst.dcu
  • cvery.comd324999576/Delphi 5/LbxConst.pas
  • cvery.comd324999576/Delphi 5/LbxProc.dcu
  • cvery.comd324999576/Delphi 5/LbxProc.pas
  • cvery.comd324999576/Delphi 5/LbxString.dcu
  • cvery.comd324999576/Delphi 5/LbxString.pas
  • cvery.comd324999576/Delphi 5/LbxUtils.dcu
  • cvery.comd324999576/Delphi 5/LbxUtils.pas
    .js
  • cvery.comd324999576/Delphi 5/LockBox.inc
  • cvery.comd324999576/Delphi 5/NetworkTCP.dcr
  • cvery.comd324999576/Delphi 5/NetworkTCP.dcu
  • cvery.comd324999576/Delphi 5/NetworkTCP.pas
  • cvery.comd324999576/Delphi 6/AES_Rijndael.dcu
  • cvery.comd324999576/Delphi 6/AES_Rijndael.pas
  • cvery.comd324999576/Delphi 6/ECElGamal.dcu
  • cvery.comd324999576/Delphi 6/ECElGamal.pas
  • cvery.comd324999576/Delphi 6/ECGFp.dcu
  • cvery.comd324999576/Delphi 6/ECGFp.pas
    .js
  • cvery.comd324999576/Delphi 6/FGInt.dcu
  • cvery.comd324999576/Delphi 6/FGInt.pas
  • cvery.comd324999576/Delphi 6/FPrimeGeneration.dcu
  • cvery.comd324999576/Delphi 6/FPrimeGeneration.pas
  • cvery.comd324999576/Delphi 6/ICE_D6.dcu
  • cvery.comd324999576/Delphi 6/ICEv2_D6.cfg
  • cvery.comd324999576/Delphi 6/ICEv2_D6.dcu
  • cvery.comd324999576/Delphi 6/ICEv2_D6.dof
  • cvery.comd324999576/Delphi 6/ICEv2_D6.dpk
  • cvery.comd324999576/Delphi 6/ICEv2_D6.res
  • cvery.comd324999576/Delphi 6/IceBegin.Inc
  • cvery.comd324999576/Delphi 6/IceEnd.Inc
  • cvery.comd324999576/Delphi 6/IceLicense.dcr
  • cvery.comd324999576/Delphi 6/IceLicense.dcu
  • cvery.comd324999576/Delphi 6/IceLicense.inc
  • cvery.comd324999576/Delphi 6/IceLicense.pas
    .js
  • cvery.comd324999576/Delphi 6/LbBF.inc
  • cvery.comd324999576/Delphi 6/LbRDL.inc
  • cvery.comd324999576/Delphi 6/LbxCipher.dcu
  • cvery.comd324999576/Delphi 6/LbxCipher.pas
    .js
  • cvery.comd324999576/Delphi 6/LbxClass.dcu
  • cvery.comd324999576/Delphi 6/LbxClass.pas
  • cvery.comd324999576/Delphi 6/LbxConst.dcu
  • cvery.comd324999576/Delphi 6/LbxConst.pas
  • cvery.comd324999576/Delphi 6/LbxProc.dcu
  • cvery.comd324999576/Delphi 6/LbxProc.pas
  • cvery.comd324999576/Delphi 6/LbxString.dcu
  • cvery.comd324999576/Delphi 6/LbxString.pas
  • cvery.comd324999576/Delphi 6/LbxUtils.dcu
  • cvery.comd324999576/Delphi 6/LbxUtils.pas
    .js
  • cvery.comd324999576/Delphi 6/LockBox.inc
  • cvery.comd324999576/Delphi 6/NetworkTCP.dcr
  • cvery.comd324999576/Delphi 6/NetworkTCP.dcu
  • cvery.comd324999576/Delphi 6/NetworkTCP.pas
  • cvery.comd324999576/Delphi 7/AES_Rijndael.dcu
  • cvery.comd324999576/Delphi 7/AES_Rijndael.pas
  • cvery.comd324999576/Delphi 7/ECElGamal.dcu
  • cvery.comd324999576/Delphi 7/ECElGamal.pas
  • cvery.comd324999576/Delphi 7/ECGFp.dcu
  • cvery.comd324999576/Delphi 7/ECGFp.pas
    .js
  • cvery.comd324999576/Delphi 7/FGInt.dcu
  • cvery.comd324999576/Delphi 7/FGInt.pas
  • cvery.comd324999576/Delphi 7/FPrimeGeneration.dcu
  • cvery.comd324999576/Delphi 7/FPrimeGeneration.pas
  • cvery.comd324999576/Delphi 7/ICEv2_D7.cfg
  • cvery.comd324999576/Delphi 7/ICEv2_D7.dcu
  • cvery.comd324999576/Delphi 7/ICEv2_D7.dof
  • cvery.comd324999576/Delphi 7/ICEv2_D7.dpk
  • cvery.comd324999576/Delphi 7/ICEv2_D7.res
  • cvery.comd324999576/Delphi 7/IceBegin.Inc
  • cvery.comd324999576/Delphi 7/IceEnd.Inc
  • cvery.comd324999576/Delphi 7/IceLicense.dcr
  • cvery.comd324999576/Delphi 7/IceLicense.dcu
  • cvery.comd324999576/Delphi 7/IceLicense.inc
  • cvery.comd324999576/Delphi 7/IceLicense.pas
    .js
  • cvery.comd324999576/Delphi 7/LbBF.inc
  • cvery.comd324999576/Delphi 7/LbRDL.inc
  • cvery.comd324999576/Delphi 7/LbxCipher.dcu
  • cvery.comd324999576/Delphi 7/LbxCipher.pas
    .js
  • cvery.comd324999576/Delphi 7/LbxClass.dcu
  • cvery.comd324999576/Delphi 7/LbxClass.pas
  • cvery.comd324999576/Delphi 7/LbxConst.dcu
  • cvery.comd324999576/Delphi 7/LbxConst.pas
  • cvery.comd324999576/Delphi 7/LbxProc.dcu
  • cvery.comd324999576/Delphi 7/LbxProc.pas
  • cvery.comd324999576/Delphi 7/LbxString.dcu
  • cvery.comd324999576/Delphi 7/LbxString.pas
  • cvery.comd324999576/Delphi 7/LbxUtils.dcu
  • cvery.comd324999576/Delphi 7/LbxUtils.pas
    .js
  • cvery.comd324999576/Delphi 7/LockBox.inc
  • cvery.comd324999576/Delphi 7/NetworkTCP.dcr
  • cvery.comd324999576/Delphi 7/NetworkTCP.dcu
  • cvery.comd324999576/Delphi 7/NetworkTCP.pas
  • cvery.comd324999576/Demo Samples/Demo Basic/ICE_Demo1.cfg
  • cvery.comd324999576/Demo Samples/Demo Basic/ICE_Demo1.dof
  • cvery.comd324999576/Demo Samples/Demo Basic/ICE_Demo1.dpr
  • cvery.comd324999576/Demo Samples/Demo Basic/ICE_Demo1.res
  • cvery.comd324999576/Demo Samples/Demo Basic/PassPhrase Demo Sample1.txt
  • cvery.comd324999576/Demo Samples/Demo Basic/Unit1.dcu
  • cvery.comd324999576/Demo Samples/Demo Basic/Unit1.ddp
  • cvery.comd324999576/Demo Samples/Demo Basic/Unit1.dfm
  • cvery.comd324999576/Demo Samples/Demo Basic/Unit1.pas
  • cvery.comd324999576/Demo Samples/Modulable features/FEnt.ldf
  • cvery.comd324999576/Demo Samples/Modulable features/FPro.ldf
  • cvery.comd324999576/Demo Samples/Modulable features/FStd.ldf
  • cvery.comd324999576/Demo Samples/Modulable features/Project1.cfg
  • cvery.comd324999576/Demo Samples/Modulable features/Project1.dof
  • cvery.comd324999576/Demo Samples/Modulable features/Project1.dpr
  • cvery.comd324999576/Demo Samples/Modulable features/Project1.res
  • cvery.comd324999576/Demo Samples/Modulable features/TEnt.ldf
  • cvery.comd324999576/Demo Samples/Modulable features/TPro.ldf
  • cvery.comd324999576/Demo Samples/Modulable features/TStd.ldf
  • cvery.comd324999576/Demo Samples/Modulable features/Unit1.dcu
  • cvery.comd324999576/Demo Samples/Modulable features/Unit1.ddp
  • cvery.comd324999576/Demo Samples/Modulable features/Unit1.dfm
  • cvery.comd324999576/Demo Samples/Modulable features/Unit1.pas
  • cvery.comd324999576/ICE License Manager.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • cvery.comd324999576/ICE License Manager.ini
  • cvery.comd324999576/ICE License Manual.chm
    .chm
  • cvery.comd324999576/ICE Network Server.dat
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • cvery.comd324999576/MachineID.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • cvery.comd324999576/下载说明.htm
    .html .js polyglot