General

  • Target

    dc89f09446e9775ea731ada3672507f8_JaffaCakes118

  • Size

    7.1MB

  • MD5

    dc89f09446e9775ea731ada3672507f8

  • SHA1

    6afdc2057aed040c2589a85425605463c9184a3c

  • SHA256

    daa286b10af9d392b0e6f7baa58cd6905dc2bdfc7cedc6ae3917209723f5de8e

  • SHA512

    37350c7b5ad242add4d2fe3b238f3ae010ad708ff460dd231ff8777371ddd373ed68a20a0da0cdf612e2dfa515a54156f579ef38a37d9633138e4d951a75fb3f

  • SSDEEP

    196608:TJUQ0r1ojnhrWi5g1AO79wmD1Nxai7q2QcVkUq7X:yQ0r1ozhYXOmD1ftoT

Score
7/10

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • dc89f09446e9775ea731ada3672507f8_JaffaCakes118
    .rar
  • X1N3 AND CFG/1.dll
    .dll windows:6 windows x86 arch:x86

    4c61426fb486518025f38198d333c5dc


    Headers

    Imports

    Exports

    Sections

  • X1N3 AND CFG/cfg/1OSNOVA.json
  • X1N3 AND CFG/cfg/BoxEsp.json
  • X1N3 AND CFG/cfg/RGB.json
  • X1N3 AND CFG/cfg/YouRF_Legit.json
  • X1N3 AND CFG/cfg/ffa_hvh.json
  • X1N3 AND CFG/cfg/legit (1).json
  • X1N3 AND CFG/cfg/mycfg.json
  • X1N3 AND CFG/injector.exe
    .exe windows:6 windows x86 arch:x86

    246ab0ca8645a7641a1d6e2072a5fac7


    Headers

    Imports

    Sections