Overview

overview

7

Static

static

7

SCWM/scloader2b.exe

windows7-x64

3

SCWM/scloader2b.exe

windows10-2004-x64

3

SCWM/wmode.dll

windows7-x64

3

SCWM/wmode.dll

windows10-2004-x64

3

SCWM/wmode.dll

windows7-x64

3

SCWM/wmode.dll

windows10-2004-x64

3

xmod_info.exe

windows7-x64

1

xmod_info.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b019ab5b168273c507badac97bdc1ddd_JaffaCakes118

  • Size

    178KB

  • MD5

    b019ab5b168273c507badac97bdc1ddd

  • SHA1

    afbbbcbc47a28a4e866e8bc0a689fdb92e25b5ab

  • SHA256

    fbd2ecce2233b0e1286824d49586753fb091476cecc7ca9d3a81864d4230ebbf

  • SHA512

    e8b25e92464b055a5e54d3aa87abdfb09200be93d38b9d4d40dcd3efbfe1dbb2821694c5029e556aba3da517a52a229f6dd7eba2cd659c855795c3c90050043e

  • SSDEEP

    3072:0v+wcz0K2nOkDFRhKvb7GOkabb5bGCXSC4Z7ELiAAars8iNnV9rCGR:0vnoHIEqOkabbxXS1Z7EOAA58izAGR

Score
7/10

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 2 IoCs

    Detects file using ACProtect software.

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • b019ab5b168273c507badac97bdc1ddd_JaffaCakes118
    .rar
  • SCWM/scloader2b.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • SCWM/scloader2b.txt
  • SCWM/wmode.bwl
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • SCWM/wmode.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • SCWM/wmode.ini
  • SCWM/wmode.txt
  • SCWM/wmode.xmod
  • SCWM/xmod_info.zip
    .zip
  • xmod.h
  • xmod_info.c
  • xmod_info.exe
    .exe windows:4 windows x86 arch:x86

    1b67767e86e2906d56d1ab5c5cd5165e


    Headers

    Imports

    Sections