Overview

overview

9

Static

static

9

ha_SmartSn...ff.chm

windows7-x64

1

ha_SmartSn...ff.chm

windows10-2004-x64

1

ha_SmartSn...ff.exe

windows7-x64

9

ha_SmartSn...ff.exe

windows10-2004-x64

9

ha_SmartSn...��.url

windows7-x64

1

ha_SmartSn...��.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    cfdfc3f539aa78e0057dec4dfa594cd6_JaffaCakes118

  • Size

    58KB

  • MD5

    cfdfc3f539aa78e0057dec4dfa594cd6

  • SHA1

    a274530082a57828252ea7cd2b79df94414393df

  • SHA256

    274acf7eb3d8d50554c64a3bd9254167e0519cabdc5da250fc3a8c2e302ed89a

  • SHA512

    1b5ba6a0c81c8e92c34075805182121f2e7e6fba69ac5d357396f801ff33511c35202ea284268fac1b42eb4287fc5d3dc588b0484602a65f81d07a15343778e9

  • SSDEEP

    1536:TBYFZaWWBRnlvFvS7M1phJqsyF9QhPTGPgu2c9:TuZWn7oK7yF9MrGIuf

Score
9/10

Malware Config

Signatures

  • Detected Nirsoft tools 1 IoCs

    Free utilities often used by attackers which can steal passwords, product keys, etc.

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • cfdfc3f539aa78e0057dec4dfa594cd6_JaffaCakes118
    .rar
  • ha_SmartSniff-v1.37/readme.txt
  • ha_SmartSniff-v1.37/smsniff.chm
    .chm
  • ha_SmartSniff-v1.37/smsniff.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • ha_SmartSniff-v1.37/新云软件.url
    .url