General

  • Target

    4bead6605384155d5fbaa73fa98e5732_JaffaCakes118

  • Size

    1.7MB

  • MD5

    4bead6605384155d5fbaa73fa98e5732

  • SHA1

    7074b628ddf4757141facf5f3ec60c748a26b926

  • SHA256

    a0fd5e2c7294304e2f33a3fc7a0aed45b33be2a13e7d9d36c8aa4d354fb3bd77

  • SHA512

    f060e571db93f346b7551ba7e5ff8401351451797db06fe8432857ed1e747a62e3753f9d6c19a790c2cc7830903eb0f3e3003b42d3fc1f6c5aec4574f1961e46

  • SSDEEP

    49152:1L4nj6PAOsbVz4Ocx8Yd0BoUQLhfz3PUYiwPblCcJXebQ:1L4KruVz4OUGBRQhr8zUhXebQ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • 4bead6605384155d5fbaa73fa98e5732_JaffaCakes118
    .zip
  • FeStudio.Game.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Newtonsoft.Json.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • System.Net.Http.WebRequest.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • System.Net.Http.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Code Sign

    Headers

    Imports

    Sections

  • Tsg.Net.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Tsg.Vip.exe
    .exe windows:4 windows x86 arch:x86

    baa93d47220682c04d92f7797d9224ce


    Headers

    Imports

    Sections

  • Tsg.Vip.exe.config
    .xml
  • ʹ÷.txt
  • ԰.txt
  • ԰.url
    .url