Overview

overview

7

Static

static

7

USDownload...es.dll

windows7-x64

7

USDownload...es.dll

windows10-2004-x64

7

USDownload...le.dll

windows7-x64

7

USDownload...le.dll

windows10-2004-x64

7

USDownload...go.dll

windows7-x64

7

USDownload...go.dll

windows10-2004-x64

7

USDownload...es.dll

windows7-x64

7

USDownload...es.dll

windows10-2004-x64

7

USDownload...ng.dll

windows7-x64

7

USDownload...ng.dll

windows10-2004-x64

7

USDownload...nt.dll

windows7-x64

7

USDownload...nt.dll

windows10-2004-x64

7

USDownload...ry.dll

windows7-x64

7

USDownload...ry.dll

windows10-2004-x64

7

USDownload...ce.dll

windows7-x64

7

USDownload...ce.dll

windows10-2004-x64

7

USDownload...ed.dll

windows7-x64

7

USDownload...ed.dll

windows10-2004-x64

7

USDownload...iz.dll

windows7-x64

3

USDownload...iz.dll

windows10-2004-x64

7

USDownload...ad.dll

windows7-x64

7

USDownload...ad.dll

windows10-2004-x64

7

USDownload...es.dll

windows7-x64

7

USDownload...es.dll

windows10-2004-x64

7

USDownload...ad.dll

windows7-x64

7

USDownload...ad.dll

windows10-2004-x64

7

USDownload...dA.dll

windows7-x64

7

USDownload...dA.dll

windows10-2004-x64

7

USDownload...ir.dll

windows7-x64

7

USDownload...ir.dll

windows10-2004-x64

7

USDownload...mp.dll

windows7-x64

7

USDownload...mp.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    a81932d464d19795329db2f479cd89e9_JaffaCakes118

  • Size

    912KB

  • MD5

    a81932d464d19795329db2f479cd89e9

  • SHA1

    cc1bae703f1955a9dd6a46377b18a74385e8f4db

  • SHA256

    095d6f1ddc0c0b821c7e909c42877c63c7fe8e50bdfb75af6e81d92b2655627d

  • SHA512

    598fe758f3e282557c2893297923bd2d38004eeab0f12a9c9d64f477a3b416154ad6af7db44d03a81189adcec6513f26a17f7f55c0a9090eabe24999ae3f0ab3

  • SSDEEP

    24576:o2MFp8q6kBdzbm+VVzxQC3eXkr8zH3lTxgwo:i8qzn/m+/zxQC3eXkr8zH3bgwo

Score
7/10
upxaspackv2

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 41 IoCs

    Detects file using ACProtect software.

  • ASPack v2.12-2.42 1 IoCs

    Detects executables packed with ASPack v2.12-2.42

    aspackv2
  • UPX packed file 42 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 51 IoCs

    Checks for missing Authenticode signature.

Files

  • a81932d464d19795329db2f479cd89e9_JaffaCakes118
    .rar
  • USDownloader/History.eng.txt
  • USDownloader/History.rus.txt
  • USDownloader/Langs/USDownloader.ara.lng
  • USDownloader/Langs/USDownloader.bul.lng
  • USDownloader/Langs/USDownloader.czc.lng
  • USDownloader/Langs/USDownloader.de.lng
  • USDownloader/Langs/USDownloader.du.lng
  • USDownloader/Langs/USDownloader.eng.lng
  • USDownloader/Langs/USDownloader.est.lng
  • USDownloader/Langs/USDownloader.fre.lng
  • USDownloader/Langs/USDownloader.ger.lng
  • USDownloader/Langs/USDownloader.ita.lng
  • USDownloader/Langs/USDownloader.kor.lng
  • USDownloader/Langs/USDownloader.lt.lng
  • USDownloader/Langs/USDownloader.pol.lng
  • USDownloader/Langs/USDownloader.ptbr.lng
  • USDownloader/Langs/USDownloader.ro.lng
  • USDownloader/Langs/USDownloader.sercyr.lng
  • USDownloader/Langs/USDownloader.sk.lng
  • USDownloader/Langs/USDownloader.spa.lng
  • USDownloader/Langs/USDownloader.tr.lng
  • USDownloader/Langs/USDownloader.ukr.lng
  • USDownloader/Plugins/AllFiles.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:1 windows x86 arch:x86


    Headers

    Sections

  • USDownloader/Plugins/Axifile.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:1 windows x86 arch:x86


    Headers

    Sections

  • USDownloader/Plugins/Badongo.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:1 windows x86 arch:x86


    Headers

    Sections

  • USDownloader/Plugins/DepositFiles.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:1 windows x86 arch:x86


    Headers

    Sections

  • USDownloader/Plugins/EasySharing.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:1 windows x86 arch:x86


    Headers

    Sections

  • USDownloader/Plugins/FileDepartment.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:1 windows x86 arch:x86


    Headers

    Sections

  • USDownloader/Plugins/FileFactory.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:1 windows x86 arch:x86


    Headers

    Sections

  • USDownloader/Plugins/FileSpace.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:1 windows x86 arch:x86


    Headers

    Sections

  • USDownloader/Plugins/ForShared.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/GetFileBiz.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/Hyperupload.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/MegaShares.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/MegaUpload.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/MegaUploadA.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/MyTempDir.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/Quickdump.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/RapidShare.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/RapidShareHA.pl~
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/RapidUpload.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/Rapidsharefr.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/SaveFile.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/Sendmefile.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/SexUploader.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/SexUploaderA2.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/SimpleUpload.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/Slil.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/SpbLand.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/StoreandServe.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/SupaShare.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/TurboUpload.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/Upfile.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/Upload2.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/UploadPort.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/UploadSend.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/UploadingHA.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/WebFile.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/WebFileHost.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/YouSendIt.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/YourFile.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/YourFileHost.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Plugins/gocr.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • USDownloader/Plugins/zShare.plg
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • USDownloader/Readme.eng.txt
  • USDownloader/Readme.lt.txt
  • USDownloader/Readme.ptb.txt
  • USDownloader/Readme.rus.txt
  • USDownloader/Readme.spa.txt
  • USDownloader/Readme.tr.txt
  • USDownloader/Readme.ukr.txt
  • USDownloader/USDownloader.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Sections

  • USDownloader/下载说明.htm
    .html .js polyglot