Overview

overview

3

Static

static

3

402615561/...or.exe

windows7-x64

3

402615561/...or.exe

windows10-2004-x64

3

402615561/...ut.vbs

windows7-x64

1

402615561/...ut.vbs

windows10-2004-x64

1

402615561/frmMain.vbs

windows7-x64

1

402615561/frmMain.vbs

windows10-2004-x64

1

402615561/...er.vbs

windows7-x64

1

402615561/...er.vbs

windows10-2004-x64

1

402615561/...IP.vbs

windows7-x64

1

402615561/...IP.vbs

windows10-2004-x64

1

402615561/...AC.vbs

windows7-x64

1

402615561/...AC.vbs

windows10-2004-x64

1

402615561/...er.vbs

windows7-x64

1

402615561/...er.vbs

windows10-2004-x64

1

402615561/modPWL.vbs

windows7-x64

1

402615561/modPWL.vbs

windows10-2004-x64

1

402615561/...xy.vbs

windows7-x64

1

402615561/...xy.vbs

windows10-2004-x64

1

402615561/...ry.vbs

windows7-x64

1

402615561/...ry.vbs

windows10-2004-x64

1

402615561/...nd.vbs

windows7-x64

1

402615561/...nd.vbs

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    bbed861601edaa728f50929e525b8622_JaffaCakes118

  • Size

    60KB

  • MD5

    bbed861601edaa728f50929e525b8622

  • SHA1

    7a86c546e16a256b19bcb94ec2821e3cb5142d47

  • SHA256

    05c6885d39d14197b4892286d94fd77c54ceea37814d7d43266324209083736e

  • SHA512

    7a79796f4f91491630f6268584ca6c6f509c7e3f0107180fcb128bd75fc5f4da055a65e4309d2fb64119aaa47318d36a5b03c3c506123e92ae6d38d32edda6e2

  • SSDEEP

    1536:OGlgTDhFLkUbXDrCrs/n7PWSnOlQg4GL4xZO1WZrdxal5gWAjoW9+w30:Blgvzt2UWGG/4rxZmWlSrjo0

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • bbed861601edaa728f50929e525b8622_JaffaCakes118
    .rar
  • 402615561/Enumerator.exe
    .exe windows:4 windows x86 arch:x86

    f28369af0535071f4c5852baf797b2a7


    Headers

    Imports

    Sections

  • 402615561/Enumerator.gif
  • 402615561/Enumerator.vbp
  • 402615561/Enumerator.vbw
  • 402615561/frmAbout.frm
    .vbs
  • 402615561/frmAbout.frx
  • 402615561/frmMain.frm
    .vbs
  • 402615561/frmMain.frx
  • 402615561/modChkIEDll.bas
  • 402615561/modGetDisplay.bas
  • 402615561/modGetIEVer.bas
    .vbs
  • 402615561/modGetIP.bas
    .vbs
  • 402615561/modGetMAC.bas
    .vbs
  • 402615561/modGetPCName.bas
  • 402615561/modGetUser.bas
  • 402615561/modGetWinVer.bas
    .vbs
  • 402615561/modPWL.bas
    .vbs
  • 402615561/modProxy.bas
    .vbs
  • 402615561/modRegInfo.bas
  • 402615561/modRegistry.bas
    .vbs
  • 402615561/modStartEnd.bas
    .vbs
  • 402615561/modSysResource.bas
  • 402615561/modToggleProxy.bas
  • 402615561/下载说明.htm
    .html .js polyglot