Overview

overview

7

Static

static

5

526009e349...18.exe

windows7-x64

3

526009e349...18.exe

windows10-2004-x64

3

$PLUGINSDI...RL.dll

windows7-x64

3

$PLUGINSDI...RL.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

3d_chinese...re.exe

windows7-x64

5

3d_chinese...re.exe

windows10-2004-x64

5

DTDJ_1.exe

windows7-x64

3

DTDJ_1.exe

windows10-2004-x64

3

DXSetup.exe

windows7-x64

5

DXSetup.exe

windows10-2004-x64

7

html/ar01s01.html

windows7-x64

3

html/ar01s01.html

windows10-2004-x64

3

html/ar01s01s01.html

windows7-x64

3

html/ar01s01s01.html

windows10-2004-x64

3

html/ar01s01s02.html

windows7-x64

3

html/ar01s01s02.html

windows10-2004-x64

3

html/ar01s02.html

windows7-x64

3

html/ar01s02.html

windows10-2004-x64

3

html/ar01s02s01.html

windows7-x64

3

html/ar01s02s01.html

windows10-2004-x64

3

html/ar01s02s02.html

windows7-x64

3

html/ar01s02s02.html

windows10-2004-x64

3

html/ar01s02s03.html

windows7-x64

3

html/ar01s02s03.html

windows10-2004-x64

3

html/ar01s02s04.html

windows7-x64

3

html/ar01s02s04.html

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    526009e34954e6e77867173c31a2acd3_JaffaCakes118

  • Size

    2.4MB

  • MD5

    526009e34954e6e77867173c31a2acd3

  • SHA1

    0be9c350d91e4891f143ef7f610d11f8644a39df

  • SHA256

    72080cd377db645b1032a3dbd490a450d5a3eb034eaed84cb77646cd6d1aab5f

  • SHA512

    a6e1e2914c84f1ca34b13175ddb1e2cf3d13c6eebf896a53fda78c35777a7ad4328c3775a4c33c7dec7ff13032ab204386a2af3d4a7587162fc2ef6b444f4d13

  • SSDEEP

    49152:jgPY71jPto17wPDoABYr5BKEj9LZGVrSXS5TXk7vDvbaGjS:jgG52/zxMSQQ3hjS

Score
5/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 9 IoCs

    Checks for missing Authenticode signature.

Files

  • 526009e34954e6e77867173c31a2acd3_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    dd1742eadfc6df18ded3c26ae64ad610


    Headers

    Imports

    Sections

  • $PLUGINSDIR/BrandingURL.dll
    .dll windows:4 windows x86 arch:x86

    711c893e4d8189fd14b6563a4e35e663


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:4 windows x86 arch:x86

    946eb0a1e85c9ade4acaf634eb5a64f1


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    4ec328f99bdd944fc98d8a5cf11f7a62


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • 3d_chinesecheckers_unlimited_share.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • DTDJ_1.exe
    .exe windows:5 windows x86 arch:x86

    4dbc5d08df28b8f55d5238d42ee67fa8


    Headers

    Imports

    Sections

  • DXSetup.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • Main_dtdj.ini
  • data/gfx/arrow.png
    .png
  • data/gfx/arrow_h.png
    .png
  • data/gfx/clock.jp2
  • data/gfx/font.png
    .png
  • data/gfx/mouse0.png
    .png
  • data/gfx/mouse1.png
    .png
  • data/gfx/panel.jp2
  • data/images/present.jp2
  • data/logo/env.jp2
  • data/logo/env1.jp2
  • data/logo/env2.jp2
  • data/logo/light.jp2
  • data/logo/thunder.png
    .png
  • data/order/banner.jp2
  • data/order/game.jp2
  • data/order/img1.jp2
  • data/order/img2.jp2
  • data/order/img3.jp2
  • data/order/img4.jp2
  • data/order/post_it.png
    .png
  • data/order/post_it_fr.png
    .png
  • data/order/scriptorder1.txt
  • data/order/scriptorder2.txt
  • data/order/scriptorder3.txt
  • data/order/title.png
    .png
  • data/order/tlk.fnt
  • data/perso/perso01.jp2
  • data/perso/perso02.jp2
  • data/perso/perso03.jp2
  • data/perso/perso04.jp2
  • data/perso/perso05.jp2
  • data/perso/perso06.jp2
  • data/sound/Music1.zik
  • data/sound/son1.wav
  • data/sound/son2.wav
  • data/themes/classic/board.jp2
  • data/themes/classic/board_bump.png
    .png
  • data/themes/classic/fond.jp2
  • data/themes/classic/pion1.jp2
  • data/themes/classic/pion2.jp2
  • data/themes/classic/pion3.jp2
  • data/themes/classic/pion4.jp2
  • data/themes/classic/pion5.jp2
  • data/themes/classic/pion6.jp2
  • data/txt/NameOfGame.ini
  • data/txt/html.ini
  • data/txt/script.txt
  • dxsetup.ini
  • html/3d_chinesecheckers_unlimited_en_fichiers/filelist.xml
  • html/3d_chinesecheckers_unlimited_en_fichiers/image001.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image001.jpg
    .jpg
  • html/3d_chinesecheckers_unlimited_en_fichiers/image002.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image002.jpg
    .jpg
  • html/3d_chinesecheckers_unlimited_en_fichiers/image003.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image003.jpg
    .jpg
  • html/3d_chinesecheckers_unlimited_en_fichiers/image004.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image004.jpg
    .jpg
  • html/3d_chinesecheckers_unlimited_en_fichiers/image005.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image005.jpg
    .jpg
  • html/3d_chinesecheckers_unlimited_en_fichiers/image006.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image006.jpg
    .jpg
  • html/3d_chinesecheckers_unlimited_en_fichiers/image007.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image007.jpg
    .jpg
  • html/3d_chinesecheckers_unlimited_en_fichiers/image008.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image008.jpg
    .jpg
  • html/3d_chinesecheckers_unlimited_en_fichiers/image009.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image009.jpg
    .jpg
  • html/3d_chinesecheckers_unlimited_en_fichiers/image010.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image010.jpg
    .jpg
  • html/3d_chinesecheckers_unlimited_en_fichiers/image011.PNG
    .png
  • html/3d_chinesecheckers_unlimited_en_fichiers/image011.gif
    .gif
  • html/3d_chinesecheckers_unlimited_en_fichiers/image012.jp2
  • html/3d_chinesecheckers_unlimited_en_fichiers/image012.jpg
    .jpg
  • html/ar01s01.html
    .html
  • html/ar01s01s01.html
    .html
  • html/ar01s01s02.html
    .html
  • html/ar01s02.html
    .html
  • html/ar01s02s01.html
    .html
  • html/ar01s02s02.html
    .html
  • html/ar01s02s03.html
    .html
  • html/ar01s02s04.html
    .html
  • html/ar01s02s05.html
    .html
  • html/ar01s02s06.html
    .html
  • html/ar01s02s07.html
    .html
  • html/ar01s02s08.html
    .html
  • html/ar01s02s09.html
    .html
  • html/ar01s03.html
    .html
  • html/ar01s03s01.html
    .html
  • html/ar01s03s02.html
    .html
  • html/ar01s03s03.html
    .html
  • html/ar01s03s04.html
    .html
  • html/ar01s04.html
    .html
  • html/ar01s04s01.html
    .html
  • html/ar01s04s02.html
    .html
  • html/ar01s04s03.html
    .html
  • html/ar01s04s04.html
    .html
  • html/ar01s05.html
    .html
  • html/ar01s06.html
    .html
  • html/ar01s06s01.html
    .html
  • html/ar01s06s02.html
    .html
  • html/ar01s06s03.html
    .html
  • html/ar01s06s04.html
    .html
  • html/ar01s06s05.html
    .html
  • html/ar01s06s06.html
    .html
  • html/ar01s06s07.html
    .html
  • html/ar01s06s08.html
    .html
  • html/ar01s06s09.html
    .html
  • html/ar01s07.html
    .html
  • html/images/home.png
    .png
  • html/images/next.png
    .png
  • html/images/prev.png
    .png
  • html/images/tlktop.png
    .png
  • html/images/up.png
    .png
  • html/index.html
    .html
  • html/style.css
  • repertoire.ini