Overview

overview

8

Static

static

3

NIAPSoft A...vC.dll

windows7-x64

3

NIAPSoft A...vC.dll

windows10-2004-x64

3

NIAPSoft A...em.sys

windows7-x64

1

NIAPSoft A...em.sys

windows10-2004-x64

1

NIAPSoft A...it.exe

windows7-x64

3

NIAPSoft A...it.exe

windows10-2004-x64

3

NIAPSoft A...gr.exe

windows7-x64

3

NIAPSoft A...gr.exe

windows10-2004-x64

3

NIAPSoft A...em.exe

windows7-x64

8

NIAPSoft A...em.exe

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

General

  • Target

    a71ce4082a9c782aedc8d525cfbf2279_JaffaCakes118

  • Size

    664KB

  • MD5

    a71ce4082a9c782aedc8d525cfbf2279

  • SHA1

    9ad69e07e37aeac7f4349d075b15d1d737c13e0b

  • SHA256

    26d72f9a254a5e094c0a5fd02edc24ecfb9e68b8c790075777ac368cf7cdb19b

  • SHA512

    f89aca21463e175dfd4f4515def8537ba54c35217d9b93ce518a28caaeeeaea41bd8bfc42c21aebdcf99ca61a503814c96345d84a029dd62d1ea5ed724a2101e

  • SSDEEP

    12288:Axz+fXM+J8sqhoOQjxavvLIpj6fB23trQpRuvyUwxQUiFOSs:Axaf6sqWOiYEpjvQWfU1

Score
3/10

Malware Config

Signatures

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • a71ce4082a9c782aedc8d525cfbf2279_JaffaCakes118
    .zip
  • NIAPSoft AntiRootkit Tools/NIAPDevC.dll
    .dll windows:4 windows x86 arch:x86

    c8b6b7a26a15ad057303cf1f967b2c3e


    Headers

    Imports

    Exports

    Sections

  • NIAPSoft AntiRootkit Tools/NIAPMirrorSystem.sys
    .sys windows:4 windows x86 arch:x86

    2d21bab40a4f1d5ea8e1865ddefefe4b


    Headers

    Imports

    Sections

  • NIAPSoft AntiRootkit Tools/NIAPRegEdit.exe
    .exe windows:4 windows x86 arch:x86

    32120991d6135761370b746421bbddde


    Headers

    Imports

    Sections

  • NIAPSoft AntiRootkit Tools/NIAP_XRay_FileMgr.exe
    .exe windows:4 windows x86 arch:x86

    cb56e3389dbf05f815b35e0333720025


    Headers

    Imports

    Sections

  • NIAPSoft AntiRootkit Tools/NIAP_XRay_System.exe
    .exe windows:4 windows x86 arch:x86

    6e58517f37a95bcdda008cc1131d527b


    Headers

    Imports

    Sections

  • ReadmeNow.txt