Overview

overview

7

Static

static

7

Organux Info.chm

windows7-x64

1

Organux Info.chm

windows10-2004-x64

1

Organux Info.pdf

windows7-x64

3

Organux Info.pdf

windows10-2004-x64

3

Organux Li...nt.pdf

windows7-x64

3

Organux Li...nt.pdf

windows10-2004-x64

3

Organux demo.dll

windows7-x64

3

Organux demo.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    30a912c5038f387fe4719621a9cdf9be_JaffaCakes118

  • Size

    6.5MB

  • MD5

    30a912c5038f387fe4719621a9cdf9be

  • SHA1

    1bf476c8ef908e4ba5c65f2b65ecb7972a1badba

  • SHA256

    b7930d76ff1534ecc6383d0f362aa22026aaf482c8082a4ca293dfa18b5a0500

  • SHA512

    7238a83acd8755414afba411cba17a77a3bb8456e1615fd50c7e2ff99b62314bbab24cb631719d680cca08d4c2fd295a90ae2dd4ab8c07e88f27d92575275ae1

  • SSDEEP

    98304:nB+4J0vgqgyeF9XTFVDK0/JtMmFa6lpi8yWoeHeYlVnZMdb3KQYzg/4qUibp+:nrJ0ogWNZZV/fMmFP0WZxnU+QYzNi8

Score
7/10
pdflink

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • One or more HTTP URLs in PDF identified

    Detects presence of HTTP links in PDF files.

    pdflink
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • One or more email addresses in PDF identified

    Detects presence of email addresses in PDF files.

    pdf

Files

  • 30a912c5038f387fe4719621a9cdf9be_JaffaCakes118
    .zip
  • Demo Version Limitations.txt
  • Organux Info.chm
    .chm
  • Organux Info.pdf
    .pdf
  • Organux License Agreement.pdf
    .pdf

    • http://syntheway.net

    • http://www.syntheway.com

    • http://www.syntheway.net

    • mailto:[email protected]

  • Organux demo.dll
    .dll windows:4 windows x86 arch:x86

    fdbfec85672f73d2a4d49635454936d4


    Headers

    Imports

    Exports

    Sections