General

  • Target

    a4743f85829f12bab113bf304e4f2905_JaffaCakes118

  • Size

    290KB

  • MD5

    a4743f85829f12bab113bf304e4f2905

  • SHA1

    d5a906f117358bc36831efc5f9a1bc4b16928554

  • SHA256

    19512e9e5b4d093d9f1677753939165e85bf5d6b7bae01127520b155e6c4f287

  • SHA512

    be1f4ff8480f3e23f7acd67d319a4986b3b3b7e852b792b077e0e17bc1a450a1ac4b7a76fece536a55dc0df5ffa804191a019200fc29187c278fdeafb62fa559

  • SSDEEP

    6144:l3pvmPpNBYRUxh/PMmnHR0uBAGbcV5EhgHEytZ7atFH:B9G79nHR0uBAGcatR

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • a4743f85829f12bab113bf304e4f2905_JaffaCakes118
    .zip
  • Purchase Order CTPO18542#.exe
    .exe windows:4 windows x86 arch:x86

    b76363e9cb88bf9390860da8e50999d2


    Headers

    Imports

    Sections

  • $PLUGINSDIR/misckvq.dll
    .dll windows:6 windows x86 arch:x86

    1c9e4adda040149a397204779003357f


    Headers

    Imports

    Exports

    Sections

  • nh3xvqxws2we