Overview

overview

7

Static

static

3

f43bf95890...18.exe

windows7-x64

7

f43bf95890...18.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

1

$PLUGINSDI...er.dll

windows10-2004-x64

1

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

Air.dll

windows7-x64

1

Air.dll

windows10-2004-x64

1

Compression.dll

windows7-x64

3

Compression.dll

windows10-2004-x64

3

LOLRecorder.exe

windows7-x64

3

LOLRecorder.exe

windows10-2004-x64

3

LOLReplay.exe

windows7-x64

3

LOLReplay.exe

windows10-2004-x64

3

LOLUtils.dll

windows7-x64

1

LOLUtils.dll

windows10-2004-x64

1

Launcher.dll

windows7-x64

1

Launcher.dll

windows10-2004-x64

1

Recorder.dll

windows7-x64

1

Recorder.dll

windows10-2004-x64

1

Replay.dll

windows7-x64

1

Replay.dll

windows10-2004-x64

1

bspatch.exe

windows7-x64

1

bspatch.exe

windows10-2004-x64

1

data/uninstall.exe

windows7-x64

7

data/uninstall.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    f43bf95890ad8652ad4ff1a22a247bc1_JaffaCakes118

  • Size

    937KB

  • MD5

    f43bf95890ad8652ad4ff1a22a247bc1

  • SHA1

    6f6a7d36c453e7a3f22f449f8d7301f933087fc5

  • SHA256

    6d6039b085b2417d25ac40a46c42bc3eb9a3751bfb28bb4d2b18c02b9904eee1

  • SHA512

    81c6406c2001d3a45e5fd2d06eba89b3496de3761b8556764b91303b1e7f569d8a3d3f64a04dbffb71825dc45157b77ed8db71919f3b6c58eb35ae5a784fda82

  • SSDEEP

    24576:SzZcC6kZ3jC1qZWbxbOtWqWjWlGjd8tk9Vxi9aJ:SaCRcGGxYGjd829Vxi9aJ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 18 IoCs

    Checks for missing Authenticode signature.

Files

  • f43bf95890ad8652ad4ff1a22a247bc1_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    bf95d1fc1d10de18b32654b123ad5e1f


    Headers

    Imports

    Sections

  • $PLUGINSDIR/Banner.dll
    .dll windows:5 windows x86 arch:x86

    beba03bbad1f8d79d5b3c1359e913e0d


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:5 windows x86 arch:x86

    e981c0ab92cb1f191bb5e23392e14796


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:5 windows x86 arch:x86

    039bcbc605477e8e87ec550c2e60e748


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    917ae9b9adb269abd5543f5bf5676bac


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • Air.dll
    .dll windows:5 windows x86 arch:x86

    5e4d27278a1138f4a863586a033553de


    Headers

    Imports

    Sections

  • Compression.dll
    .dll windows:5 windows x86 arch:x86

    cdba2273ae7f7aaec09ac997d25ba432


    Headers

    Imports

    Exports

    Sections

  • LOLRecorder.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • LOLReplay.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • LOLUtils.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Launcher.dll
    .dll windows:5 windows x86 arch:x86

    ec1454342b5e2e7b367345da0d412122


    Headers

    Imports

    Sections

  • Recorder.dll
    .dll windows:5 windows x86 arch:x86

    59fc97a69da02856994741002dc0a856


    Headers

    Imports

    Sections

  • Replay.dll
    .dll windows:5 windows x86 arch:x86

    7f28990de1df85ac16a2db64032122f0


    Headers

    Imports

    Sections

  • bspatch.exe
    .exe windows:5 windows x86 arch:x86

    d8810170aa30db002486b4a68d793efc


    Headers

    Imports

    Sections

  • data/bar.dds
  • data/bar_inner.dds
  • data/highlight.dds
  • data/pause.dds
  • data/play.dds
  • data/skip.dds
  • data/uninstall.exe
    .exe windows:5 windows x86 arch:x86

    bf95d1fc1d10de18b32654b123ad5e1f


    Headers

    Imports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:5 windows x86 arch:x86

    e981c0ab92cb1f191bb5e23392e14796


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:5 windows x86 arch:x86

    039bcbc605477e8e87ec550c2e60e748


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • icon.ico
  • loc/Chinese (Simplified).txt
  • loc/Chinese (Traditional).txt
  • loc/Dutch.txt
  • loc/English.txt
  • loc/French.txt
  • loc/German.txt
  • loc/Hungarian.txt
  • loc/Polish.txt
  • loc/Portuguese.txt
  • loc/Spanish.txt
  • lrf.dll
    .dll windows:5 windows x86 arch:x86

    5f1505c9f8738329a35bace9fc6f406b


    Headers

    Imports

    Exports

    Sections