General

  • Target

    e89a47be423f986bab07ec87c9875b82_JaffaCakes118

  • Size

    1.8MB

  • MD5

    e89a47be423f986bab07ec87c9875b82

  • SHA1

    b59e3092c6a5587b6f9fb3002e227f3294ac9359

  • SHA256

    147a342db53ebae2993dbdabdab97f47e99a542c733a0ed3fce06d60231ce7a7

  • SHA512

    97bd47820f131bb32bfc6c512b7521d432c62ec431749fe9757dd8aa6428b14270f91c34f2a06dd59230a27970d29e2e4b2ab850b48158b8c5e9f880e4532e6d

  • SSDEEP

    24576:/rMMFKDlavjUEQElhcjUuS+kQ0LaSA8o19MNMeE5GKSL1hCGjOFCYzfCADRXriJs:/rMMYlavoRkQb8CuMebPbNYR2iuKF

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • e89a47be423f986bab07ec87c9875b82_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7ed0d71376e55d58ab36dc7d3ffda898


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UpdHelper.dll
    .dll windows:6 windows x86 arch:x86

    d21c1bd3aee21744864ab9c392d7044d


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/md5dll.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • $TEMP/$0.nsis
  • $_1_/Modules/clc.dll
    .dll windows:6 windows x86 arch:x86

    cbf300722f610440cd6c79bf07ad301e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_1_/Modules/crm.dll
    .dll windows:6 windows x86 arch:x86

    f3111990a3e3a032076f002b4141c4ef


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_1_/Modules/wis.dll
    .dll windows:6 windows x86 arch:x86

    7b62718b09c9deb241ba8b2fcc471717


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_1_/RtHelp.exe
    .exe windows:6 windows x86 arch:x86

    d29f5270c56771586b86550cf2fec9f2


    Code Sign

    Headers

    Imports

    Sections

  • $_1_/msvcp110.dll
    .dll windows:6 windows x86 arch:x86

    098e9eddf1a24b3fd9465ee992148a02


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_1_/msvcr110.dll
    .dll windows:6 windows x86 arch:x86

    e057a95f8936f77238b048f253956b3b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/7z.dll
    .dll windows:4 windows x86 arch:x86

    71fc45db7a81ce236f432a828a4e8fcd


    Headers

    Imports

    Exports

    Sections

  • Modules/cdp.dll
    .dll windows:6 windows x86 arch:x86

    3c0179473e3f5c8e9f4706a95e0351f2


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/clc.dll
    .dll windows:6 windows x86 arch:x86

    cbf300722f610440cd6c79bf07ad301e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/crm.dll
    .dll windows:6 windows x86 arch:x86

    f3111990a3e3a032076f002b4141c4ef


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/cus.dll
    .dll windows:6 windows x86 arch:x86

    f2d162af3962618bdfc4de3bd93b5c96


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/nls.dll
    .dll windows:6 windows x86 arch:x86

    31888b2008aa58c8a870f953efa0cadf


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/nvs.dll
    .dll windows:6 windows x86 arch:x86

    84c3d1a4753680ed6e954de92c3cfa21


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/pfs.dll
    .dll windows:6 windows x86 arch:x86

    3bd4b5c00a3fe682f3c9c8dd7fccce66


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/wcm.dll
    .dll windows:6 windows x86 arch:x86

    7f0a03f440961ef0bd2e88d000f5481b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/wis.dll
    .dll windows:6 windows x86 arch:x86

    7b62718b09c9deb241ba8b2fcc471717


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/wss.dll
    .dll windows:6 windows x86 arch:x86

    da6a9c5e00f061899e56da3222efd161


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Runner.exe
    .exe windows:6 windows x86 arch:x86

    d29f5270c56771586b86550cf2fec9f2


    Code Sign

    Headers

    Imports

    Sections

  • msvcp110.dll
    .dll windows:6 windows x86 arch:x86

    098e9eddf1a24b3fd9465ee992148a02


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • msvcr110.dll
    .dll windows:6 windows x86 arch:x86

    e057a95f8936f77238b048f253956b3b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • uninstall.exe.nsis