Init
Reply
General
-
Target
cffaec449bed402cadadf8744d7c3a37_JaffaCakes118
-
Size
125KB
-
MD5
cffaec449bed402cadadf8744d7c3a37
-
SHA1
8c97b0fcd91a13d5246083319c6a483d911b91a8
-
SHA256
b2351718067765659325689f30fc6639d5f2dd8c6f6fec44883dada79906ad09
-
SHA512
0cce1596b395072dec1c6ccf18e21110965e286ae0e93e36456323fc74038f76b2b8c9e3117fad0e9950e003647375b7c6c7223e1e5ad206a011fa993ecc5ed2
-
SSDEEP
3072:/ogf3yxGiBnCuVBAaMGGDjRiaVvt36X2mrh:/hf3uGPukjA0tqX2Q
Score
3/10
Malware Config
Signatures
-
Unsigned PE 4 IoCs
Checks for missing Authenticode signature.
Files
-
cffaec449bed402cadadf8744d7c3a37_JaffaCakes118
-
Editor/StubbEditor.dpr
-
Plugins/Example.dll
Headers
Exports
Sections
-
Plugins/Example.dpr
-
Plugins/StealKeys.dll
Headers
Exports
Sections
-
Plugins/webcam.dll
Headers
Exports
Sections
-
ReadMe.txt
-
StrList.pas
-
StubbEditor.exe
Headers
Sections
-
Stubbos Bot Commands List.mht
-
http://p0ke.no-ip.com/
-
http://p0ke.no-ip.com/stub/stub.php?p=about
-
http://p0ke.no-ip.com/stub/stub.php?p=download
-
http://p0ke.no-ip.com/stub/stub.php?p=enter
-
http://p0ke.no-ip.com/stub/stub.php?p=feature
-
-
email-html-1.txt
-
Stubbos Bot Commands List.txt
-
bagle_spreader1.pas
-
bagle_spreader2.pas
-
biscan_webserver.pas
-
dcpp_spreader.pas
-
icqmsn_spreader.pas
-
irc_spreader.pas
-
massmail_spreader.pas
-
md5.pas
-
mxResolver.pas
-
mydoom_spreader.pas
-
netbios_spreader.pas
-
netdevil_spreader.pas
-
optix_spreader.pas
-
p2p_spreader.pas
-
pe_spreader.pas
-
plugin_spreader.pas
-
scan_spread.pas
-
spreader_bot.pas
-
stats_spreader.pas
-
stub.dpr
-
sub7_spreader.pas
-
uStrList.pas
-
untDCC.pas
-
web_spreader.pas