Overview

overview

8

Static

static

3

360Base64.dll

windows7-x64

1

360Base64.dll

windows10-2004-x64

1

7za.dll

windows7-x64

3

7za.dll

windows10-2004-x64

3

DumpCreator_x64.exe

windows7-x64

1

DumpCreator_x64.exe

windows10-2004-x64

1

DumpUper.exe

windows7-x64

6

DumpUper.exe

windows10-2004-x64

6

GameMemoryOpt.dll

windows7-x64

3

GameMemoryOpt.dll

windows10-2004-x64

3

GameMemoryOpt_x64.dll

windows7-x64

5

GameMemoryOpt_x64.dll

windows10-2004-x64

5

LDSGameHal...ll.exe

windows7-x64

6

LDSGameHal...ll.exe

windows10-2004-x64

6

LDSGamePla...or.dll

windows7-x64

3

LDSGamePla...or.dll

windows10-2004-x64

3

LDSGameVer.dll

windows7-x64

1

LDSGameVer.dll

windows10-2004-x64

1

NetBridge.dll

windows7-x64

3

NetBridge.dll

windows10-2004-x64

3

Plugin/Basic.dll

windows7-x64

8

Plugin/Basic.dll

windows10-2004-x64

8

Plugin/Con...er.dll

windows7-x64

3

Plugin/Con...er.dll

windows10-2004-x64

3

Plugin/Con...ub.dll

windows7-x64

3

Plugin/Con...ub.dll

windows10-2004-x64

3

Plugin/PopMgr.dll

windows7-x64

3

Plugin/PopMgr.dll

windows10-2004-x64

3

Plugin/PopMgrStub.dll

windows7-x64

3

Plugin/PopMgrStub.dll

windows10-2004-x64

3

Plugin/Run...on.dll

windows7-x64

3

Plugin/Run...on.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    da89524de6190b222df643af3b68881a_JaffaCakes118

  • Size

    14.0MB

  • MD5

    da89524de6190b222df643af3b68881a

  • SHA1

    e1ec5635be272c88e3a56a2dbd91404a8a20fa6a

  • SHA256

    03a9faab2d32126b4ef68a8344bf8f0611f29da3f77ab9948ad0c888c9e51c12

  • SHA512

    4e0c9974320cfbf03fe62576532fea4d3d82d0049dc62e16271d8cb353e71426a28bf8260d20cea3dbecace86d33cb12b9ede754b3da0a6d99a27a4813fcf2cc

  • SSDEEP

    393216:9rpbcZaRbulUoNWYqVbHh3N97AgjTpublmTAPJ+A9:9rpbiaRCZIYqbHA8TqlmcPJ+0

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • da89524de6190b222df643af3b68881a_JaffaCakes118
    .7z
  • 360Base64.dll
    .dll windows:5 windows x64 arch:x64

    672aff41cc00cec7d368ab6ea0ed99a9


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • 7za.dll
    .dll windows:5 windows x86 arch:x86

    cabe2cf79743f3d457d3373c7a9b84a7


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • DumpCreator_x64.exe
    .exe windows:5 windows x64 arch:x64

    f188be8f1b2d8c8f30d3fcf574699b99


    Code Sign

    Headers

    Imports

    Sections

  • DumpUper.exe
    .exe windows:5 windows x86 arch:x86

    b66bde4a080aa6ec96976a5e6639ea7e


    Code Sign

    Headers

    Imports

    Sections

  • FileList.xml
  • GameMemoryOpt.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    237134cc4cbda1585623d3e405e005d2


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • GameMemoryOpt_x64.dll
    .dll regsvr32 windows:5 windows x64 arch:x64

    b8f0e6e8e55396861924ae3feee94e47


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • LDSGameHall/DefApkIcon.ico
  • LDSGameHall/LDSGameHall.exe
    .exe windows:5 windows x86 arch:x86

    318d623c8cf76f7f96ef95be3eacb497


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • LDSGamePlayerPK/LudashiEmulator.dll
    .dll windows:5 windows x86 arch:x86

    6dc8e54377cc0381490f89061c909ad9


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • LDSGameVer.dll
    .dll windows:6 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • NetBridge.dll
    .dll windows:5 windows x86 arch:x86

    537afe0a71789d1756cc4a4cf91dee75


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Plugin/Basic.tpi
    .dll windows:5 windows x86 arch:x86

    49400d74e10e4d3581908f4ce116cef4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Plugin/ConfigCenter.dll
    .dll windows:5 windows x86 arch:x86

    3f42ff91da43b0700c0c6fb68a0b29fb


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Plugin/ConfigCenterStub.dll
    .dll windows:5 windows x86 arch:x86

    79aa1a427cec6161fd3ce15e32a97ea5


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Plugin/PopMgr.tpi
    .dll windows:5 windows x86 arch:x86

    1cfa89e9aebb129fef4ed1fef94b0959


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Plugin/PopMgrStub.dll
    .dll windows:5 windows x86 arch:x86

    ca78b41ae16d7ab713e7171c73a4c56d


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Plugin/RunExtention.tpi
    .dll windows:5 windows x86 arch:x86

    92fe7cc4f99d85fb330cbadcc48c0eee


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Plugin/ShellExt_x64.dll
    .dll regsvr32 windows:5 windows x64 arch:x64

    fc05d269668f54398ba775f64ad1d6cf


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Plugin/ShellExt_x86.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    1a728811ebfbc93ad14d565af5172fc8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Safelive.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    ac8a8ba5b6140ddb2f61fc08ec94a816


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SiteUIHelper.dll
    .dll windows:5 windows x86 arch:x86

    c41c697eb8475c10d4461922f43fe6d1


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Sites.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    723e0242e8d4b67f9451c30c5cf8eb51


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • SoftMgr/SoftMgr.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    049c8cede5569762394e20687639bbea


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Tools/AdbWinApi.dll
    .dll windows:6 windows x86 arch:x86

    c64cac39044626770353879245ea25e4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Tools/AdbWinUsbApi.dll
    .dll windows:6 windows x86 arch:x86

    fda9f9f5f569ddd0dbf3ad8a275a2eb8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Tools/Ie/LdsIeView.exe
    .exe windows:5 windows x86 arch:x86

    0df61c203615942ebde85c18bdfb3a34


    Code Sign

    Headers

    Imports

    Sections

  • Tools/LdsWebGameViewer.exe
    .exe windows:5 windows x86 arch:x86

    767650a492b352cb5d6b39cf90c18541


    Code Sign

    Headers

    Imports

    Sections

  • Tools/LdsWebView.dll
    .dll windows:5 windows x86 arch:x86

    4115a17118cda4594a3e5342f57e863a


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Tools/aapt.exe
    .exe windows:4 windows x86 arch:x86

    ef1d7a26810428a5601881853d8c24e5


    Code Sign

    Headers

    Imports

    Sections

  • Tools/adb.exe
    .exe windows:4 windows x86 arch:x86

    879e62881b452fa51161345afb04a6de


    Code Sign

    Headers

    Imports

    Sections

  • Tools/info.exe
    .exe windows:5 windows x86 arch:x86

    619a1fb1c001a77f962ffd96aafbf1b9


    Code Sign

    Headers

    Imports

    Sections

  • UpdateUI.uiz
    .zip
  • Res/Close.png
    .png
  • Res/LittleLogo.png
    .png
  • Res/dlg_shadow.png
    .png
  • Res/fore_bg.png
    .png
  • Res/msg_icon_download.png
    .png
  • Res/msg_icon_info.png
    .png
  • Res/msg_icon_ok.png
    .png
  • Res/no.png
    .png
  • Res/updateInfo.html
    .html
  • Res/yes.png
    .png
  • UpdateFail.xml
    .xml
  • UpdateHint.xml
  • UpdateProgress.xml
    .xml
  • Utils/ApkInfoUI.uiz
    .zip
  • MainUI.xml
    .xml
  • theme/close.png
    .png
  • theme/iconshadow.png
    .png
  • theme/iconshadow2.png
    .png
  • theme/nohint.png
    .png
  • theme/openapk.png
    .png
  • theme/opendir.png
    .png
  • theme/setting.png
    .png
  • theme/shadow.png
    .png
  • theme/test.png
    .png
  • theme/test1.png
    .png
  • Utils/ApkToolUI.uiz
    .zip
  • MainUI.xml
    .xml
  • theme/blue_btn.png
    .png
  • theme/checkbox.png
    .png
  • theme/close.png
    .png
  • theme/default.png
    .png
  • theme/dlg_shadow.png
    .png
  • theme/icon.png
    .png
  • theme/iconshadow.png
    .png
  • theme/min.png
    .png
  • theme/progress_bk.png
    .png
  • theme/progress_front.png
    .png
  • theme/shadow.png
    .png
  • Utils/ArCtrl.dll
    .dll windows:5 windows x86 arch:x86

    fa37d48191725b360fb0aaac2033ed38


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/CheckHp.dll
    .dll windows:5 windows x86 arch:x86

    b9ac7c8f6e46895b44f8b940f39f1db5


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/ComputerZ12.dll
    .dll windows:5 windows x86 arch:x86

    3092fbb7f248a6c206c921d73ddbea45


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/ComputerZ12_x64.dll
    .dll windows:5 windows x64 arch:x64

    b39c9c3a7732e62b4b5a04f425f59fe0


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/ComputerZ14.exe
    .exe windows:5 windows x86 arch:x86

    9d69bb52361ff9cb43d0ded03f0d12af


    Code Sign

    Headers

    Imports

    Sections

  • Utils/DisPatchMini.dll
    .dll windows:5 windows x86 arch:x86

    0f0a1c8ce73f8edb8c197bb2b12b1917


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/GMSettings.dll
    .dll windows:5 windows x86 arch:x86

    94dec7b2b063fc954dcf883edcc3ec04


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/GameMasterHelper.exe
    .exe windows:5 windows x86 arch:x86

    26bd2aeae8c43e1dba95324f678cfd56


    Code Sign

    Headers

    Imports

    Sections

  • Utils/InstExt.dll
    .dll windows:5 windows x86 arch:x86

    ae73900b843704914618a7a3a3163c81


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/LDSBasic.dll
    .dll windows:5 windows x86 arch:x86

    49400d74e10e4d3581908f4ce116cef4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/LdsBridge.exe
    .exe windows:5 windows x86 arch:x86

    7a7a393d19ee201f04ec9f1ee1c76197


    Code Sign

    Headers

    Imports

    Sections

  • Utils/LdsVolumeCtrl.dll
    .dll windows:5 windows x86 arch:x86

    0c74d4c63e4ba40d5befbc87c1b8c101


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/MNQApkTool.exe
    .exe windows:5 windows x86 arch:x86

    eab73543de8e0eca89527e8782a56cd5


    Code Sign

    Headers

    Imports

    Sections

  • Utils/MNQAppMon.dll
    .dll windows:5 windows x86 arch:x86

    e2a10fea17482668dd19fd473b2a1004


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/MiniNews.exe
    .exe windows:5 windows x86 arch:x86

    0c3119fc385f6558db06d0778e2ebfbe


    Code Sign

    Headers

    Imports

    Sections

  • Utils/Pop.dll
    .dll windows:5 windows x86 arch:x86

    ae252b45d4525c2f02b547a4936dd8e6


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/PopEx.dll
    .dll windows:5 windows x86 arch:x86

    e6a86515e1ee3e8d58a796f322a52010


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/Pop_BiZhi.exe
    .exe windows:5 windows x86 arch:x86

    db345598a9620b68e6fdd23522a8bff7


    Code Sign

    Headers

    Imports

    Sections

  • Utils/RunDll.exe
    .exe windows:5 windows x86 arch:x86

    a5d3d84cf9ddf2cd2ce721a80538ca9a


    Code Sign

    Headers

    Imports

    Sections

  • Utils/SoulDancer.exe
    .exe windows:5 windows x86 arch:x86

    79e6bc575f20a95d354de2a12428c062


    Code Sign

    Headers

    Imports

    Sections

  • Utils/SpDrv_amd64.sys
    .sys windows:6 windows x64 arch:x64

    c6434308e60ac1b892f486cb49aac279


    Headers

    Imports

    Sections

  • Utils/SpDrv_x86.sys
    .sys windows:6 windows x86 arch:x86

    885c6516fb7acd24ef5c3688b8e1d0f4


    Headers

    Imports

    Sections

  • Utils/SpSvc.dll
    .dll windows:5 windows x86 arch:x86

    a0e3e13fa6c98a024ff0f180cb186998


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/WndPlugin.dll
    .dll windows:5 windows x86 arch:x86

    573c59d63b77d32ddafc279c99a56900


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Utils/guardhp.exe
    .exe windows:5 windows x86 arch:x86

    db4d5d831c9533634445e4ba12458bd6


    Code Sign

    Headers

    Imports

    Sections

  • game/360GameIdentify.dll
    .dll windows:5 windows x86 arch:x86

    68b61e90123cc6324c41cd628360a482


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • game/360WebIdentify.dll
    .dll windows:5 windows x86 arch:x86

    7da561014b6bb606bcd7e0a47c4cd070


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • game/ModeIdentify.dat
  • game/ModeIdentify.dll
    .dll windows:5 windows x86 arch:x86

    525e6b5c24a8a6193c17b66cf9339db4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • game/gameidentify.dat
  • game/gameidentify_inc.dat
  • game/widef.dat
  • ipc/ipcservice.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    c3434ac5478d434f6907bac7f5e65cc8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • uninst.exe
    .exe windows:5 windows x86 arch:x86

    d797b0433fb555d6ccf0c48e347b82a6


    Code Sign

    Headers

    Imports

    Sections

  • update.exe
    .exe windows:5 windows x86 arch:x86

    f30514d9ad01458fe011b8b095fc37e5


    Code Sign

    Headers

    Imports

    Sections

  • updatecfg.ini