Overview

overview

10

Static

static

3

03c96fbb3a...18.exe

windows7-x64

10

03c96fbb3a...18.exe

windows10-2004-x64

7

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

FancyZoom.js

windows7-x64

1

FancyZoom.js

windows10-2004-x64

1

about.html

windows7-x64

1

about.html

windows10-2004-x64

1

blogid=321...4.html

windows7-x64

1

blogid=321...4.html

windows10-2004-x64

1

contact-us.js

windows7-x64

1

contact-us.js

windows10-2004-x64

1

de.html

windows7-x64

1

de.html

windows10-2004-x64

1

jquery.meanmenu.js

windows7-x64

1

jquery.meanmenu.js

windows10-2004-x64

1

uninstall.exe

windows7-x64

7

uninstall.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    03c96fbb3abe76e0e9fd8fb7ecb6db68_JaffaCakes118

  • Size

    343KB

  • MD5

    03c96fbb3abe76e0e9fd8fb7ecb6db68

  • SHA1

    c7f0d76e0c037fabed06fac5f2d69de2814478c5

  • SHA256

    78e4ea3e99415c528612791836fa3ce641176526adfbdd7c50ded222f29d8d00

  • SHA512

    8f205d425b378fc079576047b2d571f78041f21629757092a586139a1c95e4ea22f0cab52b7107b63a2a8a1d189de2df135b9ad988403c58338055d47021af98

  • SSDEEP

    6144:2W+7+eMqMJWJWMEHvpRzphnp4Ra5YlYhHs4U9wTADXabmKPgKdzWruMRAjVCCR:2R5MJNMkx3Bp4Ra5IYhM4AwAmbxxengr

Score
3/10

Malware Config

Signatures

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • 03c96fbb3abe76e0e9fd8fb7ecb6db68_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    e221f4f7d36469d53810a4b5f9fc8966


    Headers

    Imports

    Sections

  • $PLUGINSDIR/StartMenu.dll
    .dll windows:4 windows x86 arch:x86

    80469f6834e579db68a646d49780b9d5


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    ec5fddc407d2b4e0a16fc4d786afc555


    Headers

    Imports

    Exports

    Sections

  • FancyZoom.js
    .js
  • PleaseWait.gif
    .gif
  • Satellite1308129870.png
    .png
  • about
    .html .js polyglot
  • apple-touch-icon-114.png
    .png
  • blogid=321536463764.html
    .html .js polyglot
  • contact-us
    .js
  • dahqr0hYIu6FLUHt.c2Z
  • de
    .html .js polyglot
  • icon-brain.png
    .png
  • jquery.meanmenu.js
    .js
  • layout3.css
  • photos_3-977.jpg
    .jpg
  • social-googleplus.png
    .png
  • uninstall.exe
    .exe windows:4 windows x86 arch:x86

    e221f4f7d36469d53810a4b5f9fc8966


    Headers

    Imports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • v-bar.jpg
    .jpg
  • videos1818946919.xml
    .xml