General

  • Target

    0d54f10c8ed625629c74dee6aa812467_JaffaCakes118

  • Size

    260KB

  • MD5

    0d54f10c8ed625629c74dee6aa812467

  • SHA1

    6c4c8d4726d9aca4041e694d00d7e275530e12fa

  • SHA256

    a3bea4264ad7da5b2b3cb4070beb6fc15a51b657342f3dabe06516d897550939

  • SHA512

    fc080ac10e3495d98447115b1569de8d60807fa20f21ca9398b19f171b8264fa7be99054d579df26cec740962c271075e0b4ecbe94079878c11e2be56dbcd086

  • SSDEEP

    6144:MnbWgKClrqyfs2DqeZPsvdkjovGSWUC2XPys0PGOp1:+SwlrNphaUhT9smGy1

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • 0d54f10c8ed625629c74dee6aa812467_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    57e98d9a5a72c8d7ad8fb7a6a58b3daf


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $TEMP/0UWhWdSv_bigger.jpg
    .jpg
  • $TEMP/1969707c4ccecf89b247be9ffa3001ba
    .jpg
  • $TEMP/DXpzk0nj_bigger.jpg
    .jpg
  • $TEMP/HemeSolarium.dat
  • $TEMP/HmSfsKsk_bigger.jpg
    .jpg
  • $TEMP/J6xcn303_bigger.jpg
    .jpg
  • $TEMP/Quimper.dll
    .dll windows:5 windows x86 arch:x86

    c087f32fc744af6785ebcdc64476f6b2


    Headers

    Imports

    Sections

  • $TEMP/science.jpg
    .jpg
  • $TEMP/www-main-desktop-player-skeleton-webp-vflgR7NUp.css