Overview

overview

8

Static

static

7

msdrives/driverpp.sys

windows7-x64

1

msdrives/driverpp.sys

windows10-2004-x64

1

msdrives/iedrives.dll

windows7-x64

6

msdrives/iedrives.dll

windows10-2004-x64

6

msdrives/msdrv.exe

windows7-x64

5

msdrives/msdrv.exe

windows10-2004-x64

5

msdrives/m...rl.exe

windows7-x64

8

msdrives/m...rl.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0d5c3efcb054ef7bc90fee493f5f1679_JaffaCakes118

  • Size

    161KB

  • MD5

    0d5c3efcb054ef7bc90fee493f5f1679

  • SHA1

    a14b0dd4c9d2d5ac76dadfa19200e8c4e7e07b5f

  • SHA256

    4967b99f1aa6817f1664b8b2c769932cecf0bf3d671e9120b3d78ccfafb9847f

  • SHA512

    f23185f7af4cdbb1053081f7fbfd5679d7d8095a1749b2188d677db1c0d45a86d82634a76995970b98ecf18449ad7a7bd38a856123d9aa094684e09b646bd386

  • SSDEEP

    3072:AIj+D27+lKZnW3F9AfS63BInTsS2OVa3tJbJ5Fg/XMjYm8ULiOiafE58KibFtM:lC2iwgF9D6xssfAcj7//inibk

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 7 IoCs

    Checks for missing Authenticode signature.

Files

  • 0d5c3efcb054ef7bc90fee493f5f1679_JaffaCakes118
    .zip
  • msdrives/driverpp.sys
    .sys windows:5 windows x86 arch:x86

    c7bc88b46a0b4d32999c27568e16e78f


    Headers

    Imports

    Sections

  • msdrives/iedrives.dll
    .dll regsvr32 windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • msdrives/msdrv.EXE
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • msdrives/msdrvctrl.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections