General

  • Target

    c81ad8df886df3fd8d31063a3b46e434_JaffaCakes118

  • Size

    2.9MB

  • MD5

    c81ad8df886df3fd8d31063a3b46e434

  • SHA1

    2323b858cce4161662030b1fcf247154a3332d65

  • SHA256

    de383d620704e530a8375619c5540c10821db5ecb25d65b48ef55864e1a575d5

  • SHA512

    7c6b3473e08a4de9cb671ec90351875e5a5841681ce903a84b0d9d11c9057dc97d7662a1c5f8ac73c0c23f5bd8e89e8eb598a3a902852552bed15690a1a560d8

  • SSDEEP

    49152:JnE3z3yTIS3hYB7WCKT8Q1Gr23U59aCvFe65bsZVKlTGt2xD1Y1RjIy/kbt//rWa:hETyTf3hYUJT8sr3UHXFGVKCUD1SIy/E

Score
10/10

Malware Config

Signatures

  • Detects Strela Stealer payload 2 IoCs
  • Strela family
  • Unsigned PE 7 IoCs

    Checks for missing Authenticode signature.

Files

  • c81ad8df886df3fd8d31063a3b46e434_JaffaCakes118
    .zip
  • 03MLC816K.ini
  • 03TLC.ini
  • BN03VNEW.bin
  • FW03(TLC)v010953.bin
  • FW03MLC 8 16 k NEW.bin
  • GetInfo.exe
    .exe windows:5 windows x86 arch:x86

    c7f9ea7ceb815504f97eeddd3dbd94dc


    Headers

    Imports

    Sections

  • HubMapping.ini
  • IDBLK_TIMING.dll
    .dll windows:4 windows x86 arch:x86

    44156c02d5eac118c02c75f924a677e6


    Headers

    Imports

    Exports

    Sections

  • MP.ini
  • MPALL_F1_EC00_v363_0D.exe
    .exe windows:5 windows x86 arch:x86

    4e647c34b5631b40fa0ac969d49b2595


    Headers

    Imports

    Sections

  • MPALL_F2_v363_0D.exe
    .exe windows:5 windows x86 arch:x86

    4e647c34b5631b40fa0ac969d49b2595


    Headers

    Imports

    Sections

  • MPParamEdit_F1.exe
    .exe windows:4 windows x86 arch:x86

    cf8d01bf9c8bb36747de3c2b31b09c57


    Headers

    Imports

    Sections

  • MPParamEdit_F2.exe
    .exe windows:4 windows x86 arch:x86

    ea84fac62dcb64443dbdb7e658d2270c


    Headers

    Imports

    Sections

  • Reports/MP/F1/8ABA-MP-TC.log
  • Reports/MP/F1/Encode_LOGFILE-03-05-2015_MP-8ABA.psl
  • Reports/MP/F1/LOGFILE-03-05-2015_MP-8ABA.txt
  • Reports/MP/F1/Result-03-05-2015-MP-8ABA.txt
  • SERVER-8ABA.TXT
  • inpout32.dll
    .dll windows:4 windows x86 arch:x86

    f2c4ef3fdf4196d94dfada05f41104db


    Headers

    Imports

    Exports

    Sections