Overview

overview

4

Static

static

3

ehooQuotes...te.exe

windows7-x64

1

ehooQuotes...te.exe

windows10-2004-x64

1

ehooQuotes/Eula.rtf

windows7-x64

4

ehooQuotes/Eula.rtf

windows10-2004-x64

1

ehooQuotes/ehoo.exe

windows7-x64

1

ehooQuotes/ehoo.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    eec08e32a166d5b4b988b8c5a19ada73_JaffaCakes118

  • Size

    471KB

  • MD5

    eec08e32a166d5b4b988b8c5a19ada73

  • SHA1

    2980af81051e965ed6738545149c0e06a3598ac1

  • SHA256

    0f854869962556e24415572b9a32956a71dcec942188b9d24bedadac5976fcb1

  • SHA512

    bc475c715107fe90f0e1ac38d7a1e5aa143758bf1a91d5590cc22af10a21c6c3e1b12fc9dbc199133b076e92252fdae4cb2681282349c3a11d68f559983e74f7

  • SSDEEP

    12288:/lgtMWTbhUgNQ+gLeHzfa0PBDRwJYFEKae4xpUYeokJzl:+tMWpVQ+gLerVPZwY+e4xa

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • eec08e32a166d5b4b988b8c5a19ada73_JaffaCakes118
    .rar
  • ehooQuotes/AutoUpdate.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • ehooQuotes/Eula.rtf
    .rtf
  • ehooQuotes/MyStock.xml
  • ehooQuotes/UpdateList.xml
    .xml
  • ehooQuotes/Whatsnew.txt
  • ehooQuotes/ehoo.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • ehooQuotes/holidays.dat
  • ehooQuotes/sinaquotes.tpl
    .html .js polyglot
  • ehooQuotes/所有商品.TXT
  • ehooQuotes/所有指数.TXT
  • ehooQuotes/所有股票.TXT
  • ehooQuotes/新股上市.TXT