General

  • Target

    03e36f702f56f7e32e7e70804586cc53_JaffaCakes118

  • Size

    744KB

  • MD5

    03e36f702f56f7e32e7e70804586cc53

  • SHA1

    e00ab03cfdeb79919f5d5593407b38b3fda3dccb

  • SHA256

    23cf90b857b9e1d5f12c5a309ddf6fa1fa7aca89613cb2400318c4ce1c6ed5eb

  • SHA512

    0aa9a49a0ecdd6e5cc59845681463d8579a5c40002d7a1ad569431534d253be6d78cb2777152ad0a5e673129954f99204200db79be50b365dfaff17d74c9a7d1

  • SSDEEP

    12288:nmqk1dptex0QWPEa5l1TYln2wsUGFWQH09BxBxCa/5Hy18VsJfmQaRfc8vy4hc:nmqED0OQAl1HFFH09BxBF5HO8iJfmg80

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • 03e36f702f56f7e32e7e70804586cc53_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/ZipDLL.dll
    .dll windows:4 windows x86 arch:x86

    f10b94e3705eae25c7617ba56a648b77


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ghakrye.dll
    .dll windows:6 windows x86 arch:x86

    ef0395c3130920c1f8c8dc12ea63a782


    Headers

    Imports

    Exports

    Sections

  • beddaaiijb.fdacabfjbh