General

  • Target

    2fd8dd2118b75fd61c57f478f2f426d3_JaffaCakes118

  • Size

    916KB

  • MD5

    2fd8dd2118b75fd61c57f478f2f426d3

  • SHA1

    1b006b11478030f6d70f4de7333d3cf2e420733e

  • SHA256

    60bf916eb6577a5382d3fd61cc64a14605931dfbb56b530de8a1196869a45c05

  • SHA512

    224f8fa770ea904c9bfb6cca3a702c6690b1c66eadb3cbcf3fedb337325dde196bc72268f12e37dc71dd435fdd9495e8c6f67a409d305b5f2c00613790776011

  • SSDEEP

    24576:s14SF7H3Fk7Imm7rn3vPL7jYTESEt6t5fxYft9k+RIeeiLq:s14SF7i+z3XL7jYES061YF9pIeeiLq

Score
7/10

Malware Config

Signatures

  • VMProtect packed file 1 IoCs

    Detects executables packed with VMProtect commercial packer.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 2fd8dd2118b75fd61c57f478f2f426d3_JaffaCakes118
    .zip
  • BOSS.ini
  • Config.dat
  • View.dat
  • WDAspbd.dll
    .dll windows:5 windows x86 arch:x86

    cbc942c4a367dec47e3cc811922fb9cd


    Headers

    Imports

    Exports

    Sections

  • fboss.wav
  • fdbcae.dat
  • notify.wav
  • zhaoxin.exe
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • ·.ini
  • ź.url
  • ź˵.txt
  • ʵʹ˵2004.html
    .html