General
-
Target
544b4f12d1233089fe877d839b5a8e9c_JaffaCakes118
-
Size
538KB
-
MD5
544b4f12d1233089fe877d839b5a8e9c
-
SHA1
d9e31d5395f77c8a1cb7a707f5bad0610798c695
-
SHA256
914db99f231a1790b6b25c56e89a860e0689216e9890406ef17bdde92ddca036
-
SHA512
7983f711735956336caed0690d3798dc264791b8dc300f6bc3d6bcc2ece4279dfc8010a4e9f4f4aa55374471f3c5874f2bc850953fcfcfd5208cfbf3aa769f89
-
SSDEEP
12288:Mopr5iuPIJzbsQIF1pX7gs/tpX94ZgGE2oiQmtbWv7lvYSP:Me5ifq5/PXSZ/zWv7lAy
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
Files
-
544b4f12d1233089fe877d839b5a8e9c_JaffaCakes118
-
sample
-
mpack90/Dream3Builder_Poly_179.exe
Headers
Sections
-
mpack90/GeoIP.dat
-
mpack90/Notes.txt
-
mpack90/Readme.txt
-
mpack90/admin.php
-
mpack90/ani2.dat
-
mpack90/ani2.php
-
mpack90/anifile.php
-
mpack90/changelog.txt
-
mpack90/county_codes.txt
-
mpack90/crypt.php
-
mpack90/crypt2.php
-
mpack90/cryptor.php
-
mpack90/ff.php
-
mpack90/file.php
-
mpack90/flags/Thumbs.db
-
mpack90/flags/drm_ad.gif
-
mpack90/flags/drm_ae.gif
-
mpack90/flags/drm_af.gif
-
mpack90/flags/drm_ag.gif
-
mpack90/flags/drm_ai.gif
-
mpack90/flags/drm_al.gif
-
mpack90/flags/drm_am.gif
-
mpack90/flags/drm_an.gif
-
mpack90/flags/drm_ao.gif
-
mpack90/flags/drm_aq.gif
-
mpack90/flags/drm_ar.gif
-
mpack90/flags/drm_as.gif
-
mpack90/flags/drm_at.gif
-
mpack90/flags/drm_au.gif
-
mpack90/flags/drm_aw.gif
-
mpack90/flags/drm_az.gif
-
mpack90/flags/drm_ba.gif
-
mpack90/flags/drm_bb.gif
-
mpack90/flags/drm_bd.gif
-
mpack90/flags/drm_be.gif
-
mpack90/flags/drm_bf.gif
-
mpack90/flags/drm_bg.gif
-
mpack90/flags/drm_bh.gif
-
mpack90/flags/drm_bi.gif
-
mpack90/flags/drm_bj.gif
-
mpack90/flags/drm_bm.gif
-
mpack90/flags/drm_bn.gif
-
mpack90/flags/drm_bo.gif
-
mpack90/flags/drm_br.gif
-
mpack90/flags/drm_bs.gif
-
mpack90/flags/drm_bt.gif
-
mpack90/flags/drm_bv.gif
-
mpack90/flags/drm_bw.gif
-
mpack90/flags/drm_by.gif
-
mpack90/flags/drm_bz.gif
-
mpack90/flags/drm_ca.gif
-
mpack90/flags/drm_cc.gif
-
mpack90/flags/drm_cd.gif
-
mpack90/flags/drm_cf.gif
-
mpack90/flags/drm_cg.gif
-
mpack90/flags/drm_ch.gif
-
mpack90/flags/drm_ci.gif
-
mpack90/flags/drm_ck.gif
-
mpack90/flags/drm_cl.gif
-
mpack90/flags/drm_cm.gif
-
mpack90/flags/drm_cn.gif
-
mpack90/flags/drm_co.gif
-
mpack90/flags/drm_cr.gif
-
mpack90/flags/drm_cs.gif
-
mpack90/flags/drm_cu.gif
-
mpack90/flags/drm_cv.gif
-
mpack90/flags/drm_cx.gif
-
mpack90/flags/drm_cy.gif
-
mpack90/flags/drm_cz.gif
-
mpack90/flags/drm_de.gif
-
mpack90/flags/drm_dj.gif
-
mpack90/flags/drm_dk.gif
-
mpack90/flags/drm_dm.gif
-
mpack90/flags/drm_do.gif
-
mpack90/flags/drm_dz.gif
-
mpack90/flags/drm_ec.gif
-
mpack90/flags/drm_ee.gif
-
mpack90/flags/drm_eg.gif
-
mpack90/flags/drm_eh.gif
-
mpack90/flags/drm_er.gif
-
mpack90/flags/drm_es.gif
-
mpack90/flags/drm_et.gif
-
mpack90/flags/drm_eu.gif
-
mpack90/flags/drm_fi.gif
-
mpack90/flags/drm_fj.gif
-
mpack90/flags/drm_fk.gif
-
mpack90/flags/drm_fm.gif
-
mpack90/flags/drm_fo.gif
-
mpack90/flags/drm_fr.gif
-
mpack90/flags/drm_fx.gif
-
mpack90/flags/drm_ga.gif
-
mpack90/flags/drm_gb.gif
-
mpack90/flags/drm_gd.gif
-
mpack90/flags/drm_ge.gif
-
mpack90/flags/drm_gf.gif
-
mpack90/flags/drm_gg.gif
-
mpack90/flags/drm_gh.gif
-
mpack90/flags/drm_gi.gif
-
mpack90/flags/drm_gl.gif
-
mpack90/flags/drm_gm.gif
-
mpack90/flags/drm_gn.gif
-
mpack90/flags/drm_gp.gif
-
mpack90/flags/drm_gq.gif
-
mpack90/flags/drm_gr.gif
-
mpack90/flags/drm_gs.gif
-
mpack90/flags/drm_gt.gif
-
mpack90/flags/drm_gu.gif
-
mpack90/flags/drm_gw.gif
-
mpack90/flags/drm_gy.gif
-
mpack90/flags/drm_hk.gif
-
mpack90/flags/drm_hm.gif
-
mpack90/flags/drm_hn.gif
-
mpack90/flags/drm_hr.gif
-
mpack90/flags/drm_ht.gif
-
mpack90/flags/drm_hu.gif
-
mpack90/flags/drm_id.gif
-
mpack90/flags/drm_ie.gif
-
mpack90/flags/drm_il.gif
-
mpack90/flags/drm_im.gif
-
mpack90/flags/drm_in.gif
-
mpack90/flags/drm_io.gif
-
mpack90/flags/drm_iq.gif
-
mpack90/flags/drm_ir.gif
-
mpack90/flags/drm_is.gif
-
mpack90/flags/drm_it.gif
-
mpack90/flags/drm_je.gif
-
mpack90/flags/drm_jm.gif
-
mpack90/flags/drm_jo.gif
-
mpack90/flags/drm_jp.gif
-
mpack90/flags/drm_ke.gif
-
mpack90/flags/drm_kg.gif
-
mpack90/flags/drm_kh.gif
-
mpack90/flags/drm_ki.gif
-
mpack90/flags/drm_kk.gif
-
mpack90/flags/drm_km.gif
-
mpack90/flags/drm_kn.gif
-
mpack90/flags/drm_kp.gif
-
mpack90/flags/drm_kr.gif
-
mpack90/flags/drm_kw.gif
-
mpack90/flags/drm_ky.gif
-
mpack90/flags/drm_kz.gif
-
mpack90/flags/drm_la.gif
-
mpack90/flags/drm_lb.gif
-
mpack90/flags/drm_lc.gif
-
mpack90/flags/drm_li.gif
-
mpack90/flags/drm_lk.gif
-
mpack90/flags/drm_lr.gif
-
mpack90/flags/drm_ls.gif
-
mpack90/flags/drm_lt.gif
-
mpack90/flags/drm_lu.gif
-
mpack90/flags/drm_lv.gif
-
mpack90/flags/drm_ly.gif
-
mpack90/flags/drm_ma.gif
-
mpack90/flags/drm_mc.gif
-
mpack90/flags/drm_md.gif
-
mpack90/flags/drm_mg.gif
-
mpack90/flags/drm_mh.gif
-
mpack90/flags/drm_mk.gif
-
mpack90/flags/drm_ml.gif
-
mpack90/flags/drm_mm.gif
-
mpack90/flags/drm_mn.gif
-
mpack90/flags/drm_mo.gif
-
mpack90/flags/drm_mp.gif
-
mpack90/flags/drm_mq.gif
-
mpack90/flags/drm_mr.gif
-
mpack90/flags/drm_ms.gif
-
mpack90/flags/drm_mt.gif
-
mpack90/flags/drm_mu.gif
-
mpack90/flags/drm_mv.gif
-
mpack90/flags/drm_mw.gif
-
mpack90/flags/drm_mx.gif
-
mpack90/flags/drm_my.gif
-
mpack90/flags/drm_mz.gif
-
mpack90/flags/drm_na.gif
-
mpack90/flags/drm_nc.gif
-
mpack90/flags/drm_ne.gif
-
mpack90/flags/drm_nf.gif
-
mpack90/flags/drm_ng.gif
-
mpack90/flags/drm_ni.gif
-
mpack90/flags/drm_nl.gif
-
mpack90/flags/drm_no.gif
-
mpack90/flags/drm_np.gif
-
mpack90/flags/drm_nr.gif
-
mpack90/flags/drm_nu.gif
-
mpack90/flags/drm_nz.gif
-
mpack90/flags/drm_om.gif
-
mpack90/flags/drm_pa.gif
-
mpack90/flags/drm_pe.gif
-
mpack90/flags/drm_pf.gif
-
mpack90/flags/drm_pg.gif
-
mpack90/flags/drm_ph.gif
-
mpack90/flags/drm_pk.gif
-
mpack90/flags/drm_pl.gif
-
mpack90/flags/drm_pm.gif
-
mpack90/flags/drm_pn.gif
-
mpack90/flags/drm_pp.gif
-
mpack90/flags/drm_pr.gif
-
mpack90/flags/drm_ps.gif
-
mpack90/flags/drm_pt.gif
-
mpack90/flags/drm_pw.gif
-
mpack90/flags/drm_py.gif
-
mpack90/flags/drm_qa.gif
-
mpack90/flags/drm_rc.gif
-
mpack90/flags/drm_re.gif
-
mpack90/flags/drm_ro.gif
-
mpack90/flags/drm_ru.gif
-
mpack90/flags/drm_rw.gif
-
mpack90/flags/drm_sa.gif
-
mpack90/flags/drm_sb.gif
-
mpack90/flags/drm_sc.gif
-
mpack90/flags/drm_sd.gif
-
mpack90/flags/drm_se.gif
-
mpack90/flags/drm_sg.gif
-
mpack90/flags/drm_sh.gif
-
mpack90/flags/drm_si.gif
-
mpack90/flags/drm_sj.gif
-
mpack90/flags/drm_sk.gif
-
mpack90/flags/drm_sl.gif
-
mpack90/flags/drm_sm.gif
-
mpack90/flags/drm_sn.gif
-
mpack90/flags/drm_so.gif
-
mpack90/flags/drm_sr.gif
-
mpack90/flags/drm_st.gif
-
mpack90/flags/drm_sv.gif
-
mpack90/flags/drm_sy.gif
-
mpack90/flags/drm_sz.gif
-
mpack90/flags/drm_tc.gif
-
mpack90/flags/drm_td.gif
-
mpack90/flags/drm_tf.gif
-
mpack90/flags/drm_tg.gif
-
mpack90/flags/drm_th.gif
-
mpack90/flags/drm_ti.gif
-
mpack90/flags/drm_tj.gif
-
mpack90/flags/drm_tk.gif
-
mpack90/flags/drm_tm.gif
-
mpack90/flags/drm_tn.gif
-
mpack90/flags/drm_to.gif
-
mpack90/flags/drm_tp.gif
-
mpack90/flags/drm_tr.gif
-
mpack90/flags/drm_tt.gif
-
mpack90/flags/drm_tv.gif
-
mpack90/flags/drm_tw.gif
-
mpack90/flags/drm_tz.gif
-
mpack90/flags/drm_ua.gif
-
mpack90/flags/drm_ug.gif
-
mpack90/flags/drm_um.gif
-
mpack90/flags/drm_us.gif
-
mpack90/flags/drm_uy.gif
-
mpack90/flags/drm_uz.gif
-
mpack90/flags/drm_va.gif
-
mpack90/flags/drm_vc.gif
-
mpack90/flags/drm_ve.gif
-
mpack90/flags/drm_vg.gif
-
mpack90/flags/drm_vi.gif
-
mpack90/flags/drm_vn.gif
-
mpack90/flags/drm_vu.gif
-
mpack90/flags/drm_wf.gif
-
mpack90/flags/drm_wh.gif
-
mpack90/flags/drm_wo.gif
-
mpack90/flags/drm_ws.gif
-
mpack90/flags/drm_xx.gif
-
mpack90/flags/drm_ye.gif
-
mpack90/flags/drm_yt.gif
-
mpack90/flags/drm_yu.gif
-
mpack90/flags/drm_za.gif
-
mpack90/flags/drm_zm.gif
-
mpack90/flags/drm_zw.gif
-
mpack90/flush.php
-
mpack90/fout.php
-
mpack90/geoip.inc
-
mpack90/index.php
-
mpack90/logincheck.php
-
mpack90/maketable.php
-
mpack90/mdac4.php
-
mpack90/megapack1.php
-
mpack90/ms06-044_w2k.php
-
mpack90/notfound.php
-
mpack90/o7.php
-
mpack90/qt.php
-
mpack90/qtl.bin
-
mpack90/settings.php
-
mpack90/urls.txt
-
mpack90/urlworks.php
-
mpack90/xml.php