Overview

overview

3

Static

static

3

lvxing360/...o.html

windows7-x64

3

lvxing360/...o.html

windows10-2004-x64

3

lvxing360/...est.js

windows7-x64

3

lvxing360/...est.js

windows10-2004-x64

3

lvxing360/...ata.js

windows7-x64

3

lvxing360/...ata.js

windows10-2004-x64

3

lvxing360/...min.js

windows7-x64

3

lvxing360/...min.js

windows10-2004-x64

3

lvxing360/...o.html

windows7-x64

3

lvxing360/...o.html

windows10-2004-x64

3

lvxing360/...e.html

windows7-x64

3

lvxing360/...e.html

windows10-2004-x64

3

lvxing360/...c.html

windows7-x64

3

lvxing360/...c.html

windows10-2004-x64

1

lvxing360/...o.html

windows7-x64

3

lvxing360/...o.html

windows10-2004-x64

3

lvxing360/...��.exe

windows7-x64

3

lvxing360/...��.exe

windows10-2004-x64

3

lvxing360/...��.url

windows7-x64

1

lvxing360/...��.url

windows10-2004-x64

1

lvxing360/...��.exe

windows7-x64

3

lvxing360/...��.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ac7075379758c22e93660d947af2c066_JaffaCakes118

  • Size

    529KB

  • MD5

    ac7075379758c22e93660d947af2c066

  • SHA1

    33807a2f0981691d25fafa7d1e2d597a2c1d8202

  • SHA256

    e4d899b71ba483dc9ccf5e66958e98a22efefb22f5c4980220f86679b366cdb4

  • SHA512

    49f24b9bbdacc6f333d2a7c71a5aa7bac33c3bfb37548a2020ec9c0e89a25896ab19f6aef1d850cb268590a55a5b98d465974ae949b3516cb7fc03b1f5045d8c

  • SSDEEP

    12288:qRzVOlXusgF2D7EFsILDLSjBRoibBgAC+NsW/ys7e44:ZrD7+XDLSjgibD7CW+H

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • ac7075379758c22e93660d947af2c066_JaffaCakes118
    .rar
  • lvxing360/data/agentinfo.html
    .html .js polyglot
  • lvxing360/data/asc.gif
    .gif
  • lvxing360/data/bg.gif
    .gif
  • lvxing360/data/desc.gif
    .gif
  • lvxing360/data/jquery-latest.js
    .js
  • lvxing360/data/jquery.metadata.js
    .js
  • lvxing360/data/jquery.tablesorter.min.js
    .js
  • lvxing360/data/logo.html
    .js
  • lvxing360/data/static_title.html
    .html
  • lvxing360/data/style.css
  • lvxing360/data/ticket_static.html
    .html
  • lvxing360/data/ticketinfo.html
    .html .js polyglot
  • lvxing360/data/上海航空.gif
    .gif
  • lvxing360/data/东方航空.gif
    .gif
  • lvxing360/data/中国国航.gif
    .gif
  • lvxing360/data/南方航空.gif
    .gif
  • lvxing360/data/厦门航空.gif
    .gif
  • lvxing360/data/吉祥航空.gif
    .gif
  • lvxing360/data/四川航空.gif
    .gif
  • lvxing360/data/天津航空.gif
    .gif
  • lvxing360/data/奥凯航空.gif
    .gif
  • lvxing360/data/山东航空.gif
    .gif
  • lvxing360/data/春秋航空.gif
    .gif
  • lvxing360/data/海南航空.gif
    .gif
  • lvxing360/data/深圳航空.gif
    .gif
  • lvxing360/data/祥鹏航空.gif
    .gif
  • lvxing360/data/西部航空.gif
    .gif
  • lvxing360/data/金鹿航空.gif
    .gif
  • lvxing360/data/鲲鹏航空.gif
    .gif
  • lvxing360/data/鹰联航空.gif
    .gif
  • lvxing360/国内机票查询.exe
    .exe windows:5 windows x86 arch:x86

    fd5c7f9d715179ce955f32ff9b3acd66


    Headers

    Imports

    Sections

  • lvxing360/新云软件.url
    .url
  • lvxing360/机票直通车更新程序.exe
    .exe windows:4 windows x86 arch:x86

    878191cc432fe2522296bd7968c7c463


    Headers

    Imports

    Sections