General

  • Target

    da30be8fa013858434c475433adfd0a6_JaffaCakes118

  • Size

    285KB

  • MD5

    da30be8fa013858434c475433adfd0a6

  • SHA1

    c7ac187b5187d3d1524abd8e3443fe8186fc1d34

  • SHA256

    b52557a48389b38e86ff1a8e9af41e4f678862aa43f8c0fcf83f7cf36157da5b

  • SHA512

    ced7c8189b6798f66046a8e093d116709efa88a8ec85ae8ab8c9dd9c758e693c6b55512d2e534589d9d5e3c074c7d954537802f3a7732e880f218cd035911f5a

  • SSDEEP

    6144:QtS+QZeH+vgn3o9F8IwcmUeH3VwvF2VyFoUxprSIM2hGcNc4ys78VBfPJ/MpD:QtVVHV3oJEH3u7nprRNc1s7oRh/aD

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • da30be8fa013858434c475433adfd0a6_JaffaCakes118
    .rar
  • 20069231288464/下载说明.htm
    .html .js polyglot
  • 20069231288464/免费『商业源码』.url
  • 20069231288464/新云软件.url
    .url
  • 20069231288464/注册表监视/DllInjector.dpr
  • 20069231288464/注册表监视/HookFindNextFile.cfg
  • 20069231288464/注册表监视/HookFindNextFile.dof
  • 20069231288464/注册表监视/HookFindNextFile.~dpr
  • 20069231288464/注册表监视/HookReg.cfg
  • 20069231288464/注册表监视/HookReg.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • 20069231288464/注册表监视/HookReg.dof
  • 20069231288464/注册表监视/HookReg.dpr
  • 20069231288464/注册表监视/HookReg.~dpr
  • 20069231288464/注册表监视/Project1.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 20069231288464/注册表监视/ProjectInject.cfg
  • 20069231288464/注册表监视/ProjectInject.dof
  • 20069231288464/注册表监视/ProjectInject.dpr
  • 20069231288464/注册表监视/ProjectInject.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • 20069231288464/注册表监视/ProjectInject.res
  • 20069231288464/注册表监视/Unit1.dcu
  • 20069231288464/注册表监视/Unit1.ddp
  • 20069231288464/注册表监视/Unit1.dfm
  • 20069231288464/注册表监视/Unit1.pas
  • 20069231288464/注册表监视/Unit1.~ddp
  • 20069231288464/注册表监视/Unit1.~dfm
  • 20069231288464/注册表监视/Unit1.~pas
  • 20069231288464/注册表监视/免费『商业源码』.url