General

  • Target

    556ac75f293f8ebb70750f4ff973ab32_JaffaCakes118

  • Size

    164KB

  • MD5

    556ac75f293f8ebb70750f4ff973ab32

  • SHA1

    a04857dd9cfba09f72a6ead039236ef8ec7b79b9

  • SHA256

    f0eac458807bb4b1fae6408a2a971b61eee2b55b9bbf635c90c35c68a3c5829b

  • SHA512

    4e5a989e33c1b23f14c80cecf748b6d2228fbbf159efa29002b6949152c60ebfdba5d9bd75e99c0105b4bf518e49498132669782b9fe9f41bcfa25bfca600c20

  • SSDEEP

    3072:xFSm6uA546vYwqDDLQtZnjYnPKgI4THKZgbEw3vSyOrVHDDyu8lM:xwm/M2DDMtZnOI6agYSsRDyu3

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 556ac75f293f8ebb70750f4ff973ab32_JaffaCakes118
    .rar
  • huyanxiaojingling/AxInterop.WMPLib.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • huyanxiaojingling/Interop.WMPLib.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • huyanxiaojingling/eyeshield 3.0.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • huyanxiaojingling/shake.wav
  • huyanxiaojingling/河源下载站-cngr.cn.url
    .url
  • huyanxiaojingling/淘宝热卖.url
    .url