Overview

overview

3

Static

static

3

DBot v3.1 ...st.exe

windows7-x64

3

DBot v3.1 ...st.exe

windows10-2004-x64

3

DBot v3.1 ...les.sh

ubuntu-18.04-amd64

3

DBot v3.1 ...les.sh

debian-9-armhf

3

DBot v3.1 ...les.sh

debian-9-mips

3

DBot v3.1 ...les.sh

debian-9-mipsel

3

DBot v3.1 ...t.html

windows7-x64

3

DBot v3.1 ...t.html

windows10-2004-x64

3

DBot v3.1 ...sc.vbs

windows7-x64

1

DBot v3.1 ...sc.vbs

windows10-2004-x64

1

DBot v3.1 ...or.exe

windows7-x64

1

DBot v3.1 ...or.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    fc99fb1634948567aa5a8c2e0b622d0e_JaffaCakes118

  • Size

    132KB

  • MD5

    fc99fb1634948567aa5a8c2e0b622d0e

  • SHA1

    49acc96c0ae4b9f56566ccb8e3897108beadaa25

  • SHA256

    b416bd007ae66fb1843de071f6bd7c08282c02b3c13a96cf252e59877a973773

  • SHA512

    875f3f7eb2d5c92d31dff067ffd50f39e9ae287ea9e7e330303e565c80e216632b11d939b960570365c1686e32b4ee4fe6046f4dc8cc23bba41518606ee21f4c

  • SSDEEP

    3072:Vx0h1VYlyz403NTLdziawqXSbDT7xAIJzDWR:86g409hDlXSbDT7xRw

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

Files

  • fc99fb1634948567aa5a8c2e0b622d0e_JaffaCakes118
    .zip

    Password: infected

  • DBot v3.1 - March 2007/1.READMEFIRST.CHANGES.AND.STUFF.txt
  • DBot v3.1 - March 2007/Compressed/..pass
  • DBot v3.1 - March 2007/Compressed/index.log
  • DBot v3.1 - March 2007/MD5ChecksumTest.exe
    .exe windows:4 windows x86 arch:x86

    45d8cb55bcfec04939099fc1affdfcce


    Headers

    Imports

    Sections

  • DBot v3.1 - March 2007/PackFiles.sh
    .sh linux
  • DBot v3.1 - March 2007/botkiller.cpp
  • DBot v3.1 - March 2007/botkiller.h
  • DBot v3.1 - March 2007/config.h
  • DBot v3.1 - March 2007/d3des.c
  • DBot v3.1 - March 2007/d3des.h
  • DBot v3.1 - March 2007/dbot.dsp
  • DBot v3.1 - March 2007/dbot.dsw
  • DBot v3.1 - March 2007/dbot.ncb
  • DBot v3.1 - March 2007/dbot.opt
  • DBot v3.1 - March 2007/dbot.plg
    .html
  • DBot v3.1 - March 2007/downloader.cpp
  • DBot v3.1 - March 2007/downloader.h
  • DBot v3.1 - March 2007/features.txt
  • DBot v3.1 - March 2007/ftpd.cpp
  • DBot v3.1 - March 2007/ftpd.h
  • DBot v3.1 - March 2007/include.h
  • DBot v3.1 - March 2007/main.cpp
  • DBot v3.1 - March 2007/main.h
  • DBot v3.1 - March 2007/manuals.txt
  • DBot v3.1 - March 2007/md5.cpp
  • DBot v3.1 - March 2007/md5.h
  • DBot v3.1 - March 2007/misc.cpp
    .vbs
  • DBot v3.1 - March 2007/misc.h
  • DBot v3.1 - March 2007/netapi.cpp
  • DBot v3.1 - March 2007/netapi.h
  • DBot v3.1 - March 2007/patcher.cpp
  • DBot v3.1 - March 2007/patcher.h
  • DBot v3.1 - March 2007/qvncpass.cpp
  • DBot v3.1 - March 2007/qvncpass.h
  • DBot v3.1 - March 2007/res.rc
  • DBot v3.1 - March 2007/rfb.h
  • DBot v3.1 - March 2007/scanner.cpp
  • DBot v3.1 - March 2007/scanner.h
  • DBot v3.1 - March 2007/strings.cfg
  • DBot v3.1 - March 2007/strings.h
  • DBot v3.1 - March 2007/stringsbckup.txt
  • DBot v3.1 - March 2007/tcpip.h
  • DBot v3.1 - March 2007/version.c
  • DBot v3.1 - March 2007/version.h
  • DBot v3.1 - March 2007/vncps.cpp
  • DBot v3.1 - March 2007/vncps.h
  • DBot v3.1 - March 2007/xor.exe
    .exe windows:4 windows x86 arch:x86

    2cce3f96f132b763f87cbf19e39a5455


    Headers

    Imports

    Sections