Overview

overview

7

Static

static

7

DriverGeni...er.exe

windows7-x64

7

DriverGeni...er.exe

windows10-2004-x64

7

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

DriverGeni...er.exe

windows7-x64

7

DriverGeni...er.exe

windows10-2004-x64

7

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

DriverGeni...er.exe

windows7-x64

7

DriverGeni...er.exe

windows10-2004-x64

7

$PLUGINSDI...on.dll

windows7-x64

3

$PLUGINSDI...on.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

DriverGeni...32.exe

windows7-x64

4

DriverGeni...32.exe

windows10-2004-x64

4

DriverGeni...64.exe

windows7-x64

4

DriverGeni...64.exe

windows10-2004-x64

4

DriverGeni...79.dll

windows7-x64

3

DriverGeni...79.dll

windows10-2004-x64

3

DriverGeni...us.exe

windows7-x64

7

DriverGeni...us.exe

windows10-2004-x64

7

DriverGeni...ay.exe

windows7-x64

7

DriverGeni...ay.exe

windows10-2004-x64

7

DriverGeni...CE.dll

windows7-x64

3

DriverGeni...CE.dll

windows10-2004-x64

3

DriverGeni...rs.dll

windows7-x64

7

DriverGeni...rs.dll

windows10-2004-x64

7

DriverGeni...32.sys

windows7-x64

1

DriverGeni...32.sys

windows10-2004-x64

1

DriverGeni...4A.sys

windows7-x64

1

DriverGeni...4A.sys

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    a8dc01fa8c4f9f61b9ecbfedf37b0d7e_JaffaCakes118

  • Size

    4.7MB

  • MD5

    a8dc01fa8c4f9f61b9ecbfedf37b0d7e

  • SHA1

    3e9e497095d5fddfa897e0f178b4000588181abb

  • SHA256

    77c227bdb28e176773a55d9d5f13f757c13985f82335b2a587294d8123701303

  • SHA512

    5bbb1cdb9c3252f76a2c22f01936b892863d975bdf133cdad94355ab7c4868fb449cc22a269fdd27810ca3c9f2d54d039ebdf485a90d32308a39ceb40657d19a

  • SSDEEP

    98304:mzRSvQX4q7hAWNEQrCS7L/g0Jfs4DiuJ3F2fENcaWfioxLZ:mQvQ7EaCMbgsfFDiHfrRn

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 6 IoCs
    installer

Files

  • a8dc01fa8c4f9f61b9ecbfedf37b0d7e_JaffaCakes118
    .rar
  • DriverGenius2011/Bin/IE_downloader.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    3f1149a3053980fe6b461521d2b55a2c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • DriverGenius2011/Bin/KIS_downloader.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    3f1149a3053980fe6b461521d2b55a2c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • DriverGenius2011/Bin/MSE_downloader.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/GetVersion.dll
    .dll windows:5 windows x86 arch:x86

    fb1aa2bbc159c94cb45792330366bd5f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    3f1149a3053980fe6b461521d2b55a2c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • DriverGenius2011/DPInst32.exe
    .exe windows:6 windows x86 arch:x86

    0bbb04de18f86a2d1ac8d1d580c5be48


    Code Sign

    Headers

    Imports

    Sections

  • DriverGenius2011/DPInst64.exe
    .exe windows:6 windows x64 arch:x64

    4584aed10fdc1d558a53d7cc2371df14


    Code Sign

    Headers

    Imports

    Sections

  • DriverGenius2011/DelZip179.dll
    .dll windows:4 windows x86 arch:x86

    ddd2cf296ab65eac9207968474477ba9


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DriverGenius2011/DriverGenius.exe
    .exe windows:5 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • DriverGenius2011/DriverGeniusTray.exe
    .exe windows:5 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • DriverGenius2011/FileCE.dll
    .dll windows:4 windows x86 arch:x86

    83a29a0534d58e4ea7c25d3475a9759e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DriverGenius2011/Mydrivers.DAT
  • DriverGenius2011/Mydrivers.dll
    .dll windows:4 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • DriverGenius2011/Mydrivers32.sys
    .sys windows:5 windows x86 arch:x86

    533fdf5771580c443681dde2cec859a9


    Code Sign

    Headers

    Imports

    Sections

  • DriverGenius2011/Mydrivers64A.SYS
    .sys windows:5 windows x64 arch:x64

    20b5153009d0538e018a6f00f2b16f65


    Code Sign

    Headers

    Imports

    Sections

  • DriverGenius2011/Mydrivers64I.SYS
  • DriverGenius2011/MydriversC.dll
    .dll windows:5 windows x86 arch:x86

    efd51898bac3580dbbb8b8b6ecb205f5


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DriverGenius2011/MydriversI.dll
    .dll windows:4 windows x86 arch:x86

    1f24d8e0965ae66108d90c4c84550ab4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DriverGenius2011/PatchCore.dll
    .dll windows:4 windows x86 arch:x86

    62b7d1695f5cd323ef1e79d008d9c7e0


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DriverGenius2011/WhatsNew.txt