Sms_Connect
Sms_DisConnect
Sms_Get
Sms_Get2
Sms_GetCM
Sms_GetMaxLen
Sms_KYSms
Sms_Proxy
Sms_Send
Sms_Send2
Sms_Send3
Sms_SendEx
Sms_SendEx2
Sms_SendEx3
Sms_SetCMLocation
Sms_Status
General
-
Target
0a3070e50283cffe51f55aecaf199e46_JaffaCakes118
-
Size
1.5MB
-
MD5
0a3070e50283cffe51f55aecaf199e46
-
SHA1
8aed95a84a9d466a7060b92c43bb20ecf8798003
-
SHA256
36e23de164369871635f5065bec0166b7b1e20f500700df39cfb8b232ef51681
-
SHA512
e8a6bbe716a33d15587c3f78e014f84b4fa94460d20ad95df758e79695c5b2e79efc6963ea188c3beecc2ec396723a8e3668bdf7fa6a17c9fa84337a9486f654
-
SSDEEP
24576:7FQU9A7E2RMQD3s+g2fghLtWpsO6n2erfqiMssi4D9WvDlm/QdPrlShAj:5Q4459IRjvW0n2e1eCgodPBSC
Score
3/10
Malware Config
Signatures
-
Unsigned PE 2 IoCs
Checks for missing Authenticode signature.
Files
-
0a3070e50283cffe51f55aecaf199e46_JaffaCakes118
-
FOXUSER.DBF
-
SmsSdk.dll
795a4abb25a0dfb707c088ec2c09f7a9
Headers
Imports
Exports
Sections
-
bjspd.rmf
-
fkd.dbf
-
fkd_rpt.frf
-
fwd.dbf
-
fwd_rpt.frf
-
gzd_tmp.dbf
-
gzdcl_tmp.dbf
-
gzdgs_tmp.dbf
-
jsd_cover.frf
-
jsd_fwd.frf
-
jsd_mfk.frf
-
jsd_sbd.frf
-
jsd_spd.frf
-
jsd_spdjp.frf
-
jsd_wpspd.frf
-
khda_tmp.dbf
-
msg.bmp
-
order_tmp.dbf
-
report/jsd_fwd.rmf
-
report/jsd_mfk.rmf
-
report/jsd_sbd.rmf
-
report/jsd_spd.rmf
-
report/jsd_wpspd.rmf
-
report/qrspd_new.rmf
-
sbd_tmp.dbf
-
update.exe
Headers
Sections
-
wcjybg_rpt.frf
-
wxd_tmp.DBF
-
wxdcl_tmp.DBF
-
wxdgs_tmp.dbf
-
zdfkd.DBF
-
zlfkd.dbf