Overview

overview

7

Static

static

3

f9608e860c...18.exe

windows7-x64

7

f9608e860c...18.exe

windows10-2004-x64

7

$LOCALAPPD...er.exe

windows7-x64

7

$LOCALAPPD...er.exe

windows10-2004-x64

7

$PLUGINSDI...ll.dll

windows7-x64

1

$PLUGINSDI...ll.dll

windows10-2004-x64

1

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$LOCALAPPD...CB.exe

windows7-x64

1

$LOCALAPPD...CB.exe

windows10-2004-x64

1

$LOCALAPPD...SA.exe

windows7-x64

6

$LOCALAPPD...SA.exe

windows10-2004-x64

6

$LOCALAPPD...ok.dll

windows7-x64

1

$LOCALAPPD...ok.dll

windows10-2004-x64

1

$PLUGINSDI...ll.dll

windows7-x64

1

$PLUGINSDI...ll.dll

windows10-2004-x64

1

$PLUGINSDI...lp.dll

windows7-x64

1

$PLUGINSDI...lp.dll

windows10-2004-x64

1

$PLUGINSDIR/Setup.dll

windows7-x64

1

$PLUGINSDIR/Setup.dll

windows10-2004-x64

1

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    f9608e860c3dddde8fd0a160d7a5972b_JaffaCakes118

  • Size

    635KB

  • MD5

    f9608e860c3dddde8fd0a160d7a5972b

  • SHA1

    9994b58ee14cbe838d9c400d6d56577e84140eb9

  • SHA256

    ae19c277a0270858f90373415d715878bf76f91a4da405111c4df0ef71d422e5

  • SHA512

    e442100c7339287d51c5985b6f2284dc7890084ecf4e01986864b7998bb80918f9dff5e1aaf4d2913c8542b3350925e39ae76407cb25dd19b7dbdd54640e0e1f

  • SSDEEP

    12288:4Gu7f46NkAg5IEi7kevmGgvQUsvxjkG/fKpP4kOy0HZi00mFCEIgs:4GkDkjFi4evpn5pjkL4kOywfXCEIgs

Score
3/10

Malware Config

Signatures

  • Unsigned PE 12 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs
    installer

Files

  • f9608e860c3dddde8fd0a160d7a5972b_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $LOCALAPPDATA/lukyluSA/bin/1.0.6.0/$OUTDIR/LukyLuUninstaller.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/Install.dll
    .dll windows:5 windows x86 arch:x86

    76b3a21649e5fd351adf6c401d29fe48


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $LOCALAPPDATA/lukyluSA/bin/1.0.6.0/LukyLuSACB.exe
    .exe windows:5 windows x86 arch:x86

    39b01aded6073c5a6c80b67ea5ed9ceb


    Headers

    Imports

    Sections

  • $LOCALAPPDATA/lukyluSA/bin/1.0.6.0/copyright.txt
  • $LOCALAPPDATA/lukyluSA/bin/1.0.6.0/lukyluSA.exe
    .exe windows:5 windows x86 arch:x86

    82804e9a7b83ee97790fbfe0af0b0dc4


    Headers

    Imports

    Sections

  • $LOCALAPPDATA/lukyluSA/bin/1.0.6.0/lukyluSAHook.dll
    .dll windows:5 windows x86 arch:x86

    9e50d8a875498cb9d27b6ba2dcb86947


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/Install.dll
    .dll windows:5 windows x86 arch:x86

    76b3a21649e5fd351adf6c401d29fe48


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/LaunchHelp.dll
    .dll windows:5 windows x86 arch:x86

    2066603cd83a6b700ab46358852e6edb


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/Setup.dll
    .dll windows:5 windows x86 arch:x86

    8ab3da1fb25567ef4ab03357e31ab8dd


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    a30c8f01c0c7a46c3c2e2a628deec7b9


    Headers

    Imports

    Exports

    Sections