Overview

overview

7

Static

static

3

msgrkey.exe

windows7-x64

7

msgrkey.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

1

$PLUGINSDI...ll.dll

windows10-2004-x64

1

msgrkey.exe

windows7-x64

1

msgrkey.exe

windows10-2004-x64

1

pk.chm

windows7-x64

1

pk.chm

windows10-2004-x64

1

新云软件.url

windows7-x64

1

新云软件.url

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    e782b59f57322c571bc2a73f6277f43e_JaffaCakes118

  • Size

    443KB

  • MD5

    e782b59f57322c571bc2a73f6277f43e

  • SHA1

    376067cef6df99e15fcfc0c42afc10ccdfef5114

  • SHA256

    2eab88cf3b48d6561dbc51203eff80ca01809a5d972bab64b54397fb5ff1732a

  • SHA512

    e2e3be35ea8fa8d85cf197e2f45fb628eebd09591c8b27cdd91e3b63eeedd8513152826bab401901d91231ed331d98708565cf7b499b65718f2ad93fa6780da6

  • SSDEEP

    12288:U2r/823oqKx1pPiKfUhFeEzf5q8XHTTqC2FAJDk7/snw8:P/8AFKx1Ea0eef5q83/BB

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs
    installer

Files

  • e782b59f57322c571bc2a73f6277f43e_JaffaCakes118
    .rar
  • msgrkey.exe
    .exe windows:4 windows x86 arch:x86

    18bc6fa81e19f21156316b1ae696ed6b


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    57354bdeea3dfae6e948101add87501a


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/StartMenu.dll
    .dll windows:4 windows x86 arch:x86

    28d94e5199b88ad374b3cb2118e31a66


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsisdll.dll
    .dll windows:4 windows x86 arch:x86

    8bb358dcbbaa26b50e75f850e85d5b37


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/serial.ini
  • msgrkey.exe
    .exe windows:4 windows x86 arch:x86

    fb5dd8b006d6be1bc170717a852b9387


    Headers

    Imports

    Sections

  • pk.chm
    .chm
  • un-msgrkey.exe.nsis
  • 新云软件.url
    .url