General

  • Target

    4186938aa911a7fb0eace547511bba54_JaffaCakes118

  • Size

    7.6MB

  • MD5

    4186938aa911a7fb0eace547511bba54

  • SHA1

    53f9a9bc1a87ea0d6b3dc128343b5a4b9114d2e2

  • SHA256

    675b0551eb1de2c94632c09f04cda5d14f47c8d3d4ed8dbf1d2e15a874872536

  • SHA512

    a7b406ea73b475bd99156b018dd99ffea663c624a222433fa8f3dc6a67ebf739f4565241f2921cacc76619d2298bc08d861607e0821b8895fdb6d417ec81e3d7

  • SSDEEP

    98304:nDqWE60X7YuqAOdyPNGyi+nnA1RfYxWPOkqSMtBPzETmFt0w73A/YKppbow6OqTr:DcqV8PNGYnOOkqWqFtXjADSTqNwPNGa

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • 4186938aa911a7fb0eace547511bba54_JaffaCakes118
    .zip
  • PC6下载站.htm
    .html .js polyglot
  • ralink_2870_5.1.5.0-allos/VISTA64_WIN/RT2870.inf
  • ralink_2870_5.1.5.0-allos/VISTA64_WIN/RT2870.sys
    .sys windows:5 windows x64 arch:x64

    cdab5aa91fdbc015caedd52666f89dde


    Code Sign

    Headers

    Imports

    Sections

  • ralink_2870_5.1.5.0-allos/VISTA64_WIN/RaCoInst.dat
  • ralink_2870_5.1.5.0-allos/VISTA64_WIN/RaCoInstx.dll
    .dll windows:4 windows x64 arch:x64

    3dabf1b7fa18f57bd7bfe95fc861a31c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ralink_2870_5.1.5.0-allos/VISTA64_WIN/rt2870.cat
  • ralink_2870_5.1.5.0-allos/VISTA_WIN/RT2870.inf
  • ralink_2870_5.1.5.0-allos/VISTA_WIN/RT2870.sys
    .sys windows:5 windows x86 arch:x86

    4bce96bbfbd48ff5302f1fd876249184


    Code Sign

    Headers

    Imports

    Sections

  • ralink_2870_5.1.5.0-allos/VISTA_WIN/RaCoInst.dat
  • ralink_2870_5.1.5.0-allos/VISTA_WIN/RaCoInst.dll
    .dll windows:4 windows x86 arch:x86

    5c2a6739bb680432281b7264d6738261


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ralink_2870_5.1.5.0-allos/VISTA_WIN/rt2870.cat
  • ralink_2870_5.1.5.0-allos/WIN764_WIN/RaCoInst.dat
  • ralink_2870_5.1.5.0-allos/WIN764_WIN/RaCoInstx.dll
    .dll windows:4 windows x64 arch:x64

    3dabf1b7fa18f57bd7bfe95fc861a31c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ralink_2870_5.1.5.0-allos/WIN764_WIN/netr28ux.cat
  • ralink_2870_5.1.5.0-allos/WIN764_WIN/netr28ux.inf
  • ralink_2870_5.1.5.0-allos/WIN764_WIN/netr28ux.sys
    .sys windows:6 windows x64 arch:x64

    5a5d63a2e211db06e4bac56244629832


    Code Sign

    Headers

    Imports

    Sections

  • ralink_2870_5.1.5.0-allos/WIN7_WIN/FW_2870.bin
  • ralink_2870_5.1.5.0-allos/WIN7_WIN/FW_3573.bin
  • ralink_2870_5.1.5.0-allos/WIN7_WIN/FW_7601.bin
  • ralink_2870_5.1.5.0-allos/WIN7_WIN/FW_7610.bin
  • ralink_2870_5.1.5.0-allos/WIN7_WIN/RaCoInst.dat
  • ralink_2870_5.1.5.0-allos/WIN7_WIN/RaCoInst.dll
    .dll windows:4 windows x86 arch:x86

    5c2a6739bb680432281b7264d6738261


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ralink_2870_5.1.5.0-allos/WIN7_WIN/netr28u.cat
  • ralink_2870_5.1.5.0-allos/WIN7_WIN/netr28u.inf
  • ralink_2870_5.1.5.0-allos/WIN7_WIN/netr28u.sys
    .sys windows:6 windows x86 arch:x86

    a34398a41b0904abd552e3d78c40426f


    Code Sign

    Headers

    Imports

    Sections

  • ralink_2870_5.1.5.0-allos/WIN864_WIN/RaCoInst.dat
  • ralink_2870_5.1.5.0-allos/WIN864_WIN/RaCoInstx.dll
    .dll windows:4 windows x64 arch:x64

    3dabf1b7fa18f57bd7bfe95fc861a31c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ralink_2870_5.1.5.0-allos/WIN864_WIN/netr28ux.cat
  • ralink_2870_5.1.5.0-allos/WIN864_WIN/netr28ux.inf
  • ralink_2870_5.1.5.0-allos/WIN864_WIN/netr28ux.sys
    .sys windows:6 windows x64 arch:x64

    13b5712d5f612dc7cb3147e7148a3574


    Code Sign

    Headers

    Imports

    Sections

  • ralink_2870_5.1.5.0-allos/WIN8_WIN/FW_2870.bin
  • ralink_2870_5.1.5.0-allos/WIN8_WIN/FW_3573.bin
  • ralink_2870_5.1.5.0-allos/WIN8_WIN/FW_7601.bin
  • ralink_2870_5.1.5.0-allos/WIN8_WIN/FW_7610.bin
  • ralink_2870_5.1.5.0-allos/WIN8_WIN/RaCoInst.dat
  • ralink_2870_5.1.5.0-allos/WIN8_WIN/RaCoInst.dll
    .dll windows:4 windows x86 arch:x86

    5c2a6739bb680432281b7264d6738261


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ralink_2870_5.1.5.0-allos/WIN8_WIN/netr28u.cat
  • ralink_2870_5.1.5.0-allos/WIN8_WIN/netr28u.inf
  • ralink_2870_5.1.5.0-allos/WIN8_WIN/netr28u.sys
    .sys windows:6 windows x86 arch:x86

    0796a6984a37e76bb275c4924c1df7b7


    Code Sign

    Headers

    Imports

    Sections

  • ralink_2870_5.1.5.0-allos/XP64_WIN/RT2870.inf
  • ralink_2870_5.1.5.0-allos/XP64_WIN/RT2870.sys
    .sys windows:5 windows x64 arch:x64

    cdab5aa91fdbc015caedd52666f89dde


    Code Sign

    Headers

    Imports

    Sections

  • ralink_2870_5.1.5.0-allos/XP64_WIN/RaCoInst.dat
  • ralink_2870_5.1.5.0-allos/XP64_WIN/RaCoInstx.dll
    .dll windows:4 windows x64 arch:x64

    3dabf1b7fa18f57bd7bfe95fc861a31c


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ralink_2870_5.1.5.0-allos/XP64_WIN/rt2870.cat
  • ralink_2870_5.1.5.0-allos/XP_WIN/RT2870.inf
  • ralink_2870_5.1.5.0-allos/XP_WIN/RT2870.sys
    .sys windows:5 windows x86 arch:x86

    4bce96bbfbd48ff5302f1fd876249184


    Code Sign

    Headers

    Imports

    Sections

  • ralink_2870_5.1.5.0-allos/XP_WIN/RaCoInst.dat
  • ralink_2870_5.1.5.0-allos/XP_WIN/RaCoInst.dll
    .dll windows:4 windows x86 arch:x86

    5c2a6739bb680432281b7264d6738261


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ralink_2870_5.1.5.0-allos/XP_WIN/rt2870.cat
  • ralink_2870_5.1.5.0-allos/dpinst.exe
    .exe windows:6 windows x86 arch:x86

    3ab7cc62e4963955ad408cd420cd8ef1


    Code Sign

    Headers

    Imports

    Sections

  • ralink_2870_5.1.5.0-allos/dpinst_x64.exe
    .exe windows:6 windows x64 arch:x64

    3eacb9638877275335da4b58e52824f8


    Code Sign

    Headers

    Imports

    Sections

  • ralink_2870_5.1.5.0-allos/lpk.dll
    .dll windows:5 windows x86 arch:x86

    00c5fd00087020a0645079ce30f4148b


    Headers

    Imports

    Exports

    Sections

  • 下载说明.txt