General

  • Target

    ffcaa974dc6c4b9dab0cf1f2618be031_JaffaCakes118

  • Size

    853KB

  • MD5

    ffcaa974dc6c4b9dab0cf1f2618be031

  • SHA1

    4af603d5879be50bbcf98efc06002353fba59d83

  • SHA256

    c10816957f5f8268d421e401b747b082adefe746c39216142d44fa14082af668

  • SHA512

    9ffcf53aed2b07d135b1f220768ae4eaca9b3cfee0f03fd08078a67533bffcc13520a5c36b1bd3ef3830ef61412880044a3d4fb23e07bbf703cbd2eb6c1732f0

  • SSDEEP

    24576:p3oNEzmAvVL+mBfewVAfcW5wfjhM72ekNhn:p3okFAqewVAfcWyfjhMyrNhn

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 4 IoCs

    Detects file using ACProtect software.

  • UPX packed file 5 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 8 IoCs

    Checks for missing Authenticode signature.

Files

  • ffcaa974dc6c4b9dab0cf1f2618be031_JaffaCakes118
    .zip
  • DXTBmp QuickStart.txt
  • DXTBmp.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • DXTBmp.htm
    .html
  • Texture Formats used by CFS3.rtf
    .rtf
  • Texture Formats used by FS2002.rtf
    .rtf
  • Texture Formats used by FS2004.rtf
    .rtf
  • data/mwace.dll
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:1 windows x86 arch:x86


    Headers

    Sections

  • data/mwdds.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • data/mwgfx.dll
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • data/mwgfx24.dll
    .dll windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • data/mwgfxcopy.exe
    .exe windows:4 windows x86 arch:x86

    9db90a256fb48a39e625df3c3b0a3b23


    Headers

    Imports

    Sections

  • noseart_info.txt
  • 绿化.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections