Overview

overview

9

Static

static

3

qxbm/AutoUpdate.dll

windows7-x64

7

qxbm/AutoUpdate.dll

windows10-2004-x64

7

qxbm/AutoUpdate.exe

windows7-x64

1

qxbm/AutoUpdate.exe

windows10-2004-x64

1

qxbm/DevCo...gn.dll

windows7-x64

1

qxbm/DevCo...gn.dll

windows10-2004-x64

1

qxbm/DevCo...r2.dll

windows7-x64

1

qxbm/DevCo...r2.dll

windows10-2004-x64

1

qxbm/ICSha...ib.dll

windows7-x64

1

qxbm/ICSha...ib.dll

windows10-2004-x64

1

qxbm/Inter...ol.dll

windows7-x64

1

qxbm/Inter...ol.dll

windows10-2004-x64

1

qxbm/Newto...on.dll

windows7-x64

1

qxbm/Newto...on.dll

windows10-2004-x64

1

qxbm/QQ七...11.exe

windows7-x64

1

qxbm/QQ七...11.exe

windows10-2004-x64

1

qxbm/Qx.dll

windows7-x64

9

qxbm/Qx.dll

windows10-2004-x64

9

qxbm/antlr...me.dll

windows7-x64

1

qxbm/antlr...me.dll

windows10-2004-x64

1

qxbm/jordan.dll

windows7-x64

1

qxbm/jordan.dll

windows10-2004-x64

1

qxbm/log4net.dll

windows7-x64

1

qxbm/log4net.dll

windows10-2004-x64

1

qxbm/新云软件.url

windows7-x64

1

qxbm/新云软件.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    d58efd34e141d8a545fd05ece1d916b7_JaffaCakes118

  • Size

    5.1MB

  • MD5

    d58efd34e141d8a545fd05ece1d916b7

  • SHA1

    0efaa3a89a6cc23dd230d9ff0de11d6bcc9c4148

  • SHA256

    08a7d5db3fc627dabc890817727a92aaefe5ed0d18849d138943a7b0279ca69c

  • SHA512

    6217358497e9694b99951eda2f06cdd70f5d895fed5fdecf0f149972fe785f1956e8d672d87cf34ea120a72a6e52f50cc278da3028934c26232f280fb845bed9

  • SSDEEP

    98304:EdAIAuYzbH1eoLtiGvon9g9Vh0BJJEdWg4WJyoP/2tlIzV1wjaM67xxzwY:SUeohiSM9EWbrW7JV1wjr67fz5

Score
3/10

Malware Config

Signatures

  • Unsigned PE 12 IoCs

    Checks for missing Authenticode signature.

Files

  • d58efd34e141d8a545fd05ece1d916b7_JaffaCakes118
    .rar
  • qxbm/AutoUpdate.dll
    .dll windows:4 windows x86 arch:x86

    baa93d47220682c04d92f7797d9224ce


    Headers

    Imports

    Exports

    Sections

  • qxbm/AutoUpdate.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • qxbm/Building_config.ini
  • qxbm/DevComponents.DotNetBar.Design.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • qxbm/DevComponents.DotNetBar2.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • qxbm/ICSharpCode.SharpZipLib.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • qxbm/Interop.MSScriptControl.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • qxbm/Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • qxbm/Proxy_Set.ini
  • qxbm/QQ七雄保姆2011.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • qxbm/Qx.dll
    .dll windows:4 windows x86 arch:x86

    9797f0bc8bd5fa13ea39daaec6ee04fa


    Headers

    Imports

    Exports

    Sections

  • qxbm/ServerSave_confg.ini
  • qxbm/ServerSave_confg_TW.ini
  • qxbm/SystemSet_config.ini
  • qxbm/UpdateList.xml
  • qxbm/antlr.runtime.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • qxbm/farm_config.ini
  • qxbm/hotkey_config.ini
  • qxbm/jordan.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • qxbm/junzhu_Mission_config.ini
  • qxbm/log4net.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • qxbm/paoshang_config.ini
  • qxbm/tech_config.ini
  • qxbm/user.ini
  • qxbm/user_tw.ini
  • qxbm/新云软件.url
    .url