General

  • Target

    2aa2c8dc35faa3837d937e60895c6bb7_JaffaCakes118

  • Size

    4.2MB

  • MD5

    2aa2c8dc35faa3837d937e60895c6bb7

  • SHA1

    1cb1e5d8f8df58f75978940d8b8c1c28d8844985

  • SHA256

    959506e5f54b89adaab21d42259e839ba78fad01963dedcc6b45bbedf7b52dec

  • SHA512

    1791a2e8e9b7669051617e3952ee76186eb4c8589c6eeed79eb32d500fe9a47689d480b41fe69018825ae8b02baa4d94e4b348f73ced490cd4fde534f6772a23

  • SSDEEP

    98304:unYQ279N5QylVDXEWbgs7McT8a6Rb667RD6Il9MdbRsjRMLjRS2Se:uYQ279NxVEWbgLcRIRD6Il+dRIRMLjRB

Score
3/10

Malware Config

Signatures

  • Unsigned PE 9 IoCs

    Checks for missing Authenticode signature.

Files

  • 2aa2c8dc35faa3837d937e60895c6bb7_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    e221f4f7d36469d53810a4b5f9fc8966


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/license.rtf
    .rtf
  • $PLUGINSDIR/logo.ico
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    ec5fddc407d2b4e0a16fc4d786afc555


    Headers

    Imports

    Exports

    Sections

  • $TEMP/BundleOffer_Honeyview.exe
    .exe windows:5 windows x86 arch:x86

    9f337c0d5b14d1477e705dd351f1e5a4


    Code Sign

    Headers

    Imports

    Sections

  • $TEMP/TouchURL.exe
    .exe windows:5 windows x86 arch:x86

    10fbe2f0e6dcf7b458df4402a8bae920


    Code Sign

    Headers

    Imports

    Sections

  • 7z/7-zip.chm
    .chm
  • 7z/7z.dll
    .dll windows:4 windows x86 arch:x86

    71fc45db7a81ce236f432a828a4e8fcd


    Headers

    Imports

    Exports

    Sections

  • 7z/7z.exe
    .exe windows:4 windows x86 arch:x86

    709c92fb1b0d51e4048409976b042040


    Headers

    Imports

    Sections

  • 7z/7z.sfx
    .exe windows:4 windows x86 arch:x86

    1f4dc9aa893a3c5fdfc9623903183e73


    Headers

    Imports

    Sections

  • 7z/7zG.exe
    .exe windows:4 windows x86 arch:x86

    25a8164eab592477f82700ee1267c0e7


    Headers

    Imports

    Sections

  • 7z/License.txt
  • 7z/lang/ko.txt
  • 7z/readme.txt
  • Aiview32.exe
    .exe windows:5 windows x86 arch:x86

    dcd975b73587038c7254d10923efe0b3


    Code Sign

    Headers

    Imports

    Sections

  • Ark32.dll
    .dll windows:5 windows x86 arch:x86

    c04a32761b82ce14aa23ba289d6edae9


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Ark32lgpl.dll
    .dll windows:5 windows x86 arch:x86

    213561b663826c12cff8d69c48cf7345


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Ark64.dll
    .dll windows:5 windows x64 arch:x64

    fa48bc46e83fd7a850595f271194a40b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Ark64lgpl.dll
    .dll windows:5 windows x64 arch:x64

    704b370ccfe736eec7179213f35ca539


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • ArkLicense.txt
  • Bandizip32.exe
    .exe windows:5 windows x86 arch:x86

    cb088440935b7ca3beeb9d087a4745ea


    Code Sign

    Headers

    Imports

    Sections

  • Bandizip64.exe
    .exe windows:5 windows x64 arch:x64

    f677939108457545398bd4b392d326bb


    Code Sign

    Headers

    Imports

    Sections

  • RegDll32.exe
    .exe windows:5 windows x86 arch:x86

    232c87825de02d675c765cf845a78c7d


    Code Sign

    Headers

    Imports

    Sections

  • RegDll64.exe
    .exe windows:5 windows x64 arch:x64

    b68856ea20dee23a2b6f1e7332f3d946


    Code Sign

    Headers

    Imports

    Sections

  • Uninstall.exe.nsis
  • Updater.exe
    .exe windows:5 windows x86 arch:x86

    6d8c476972d1a4e17662c61a267d47f6


    Code Sign

    Headers

    Imports

    Sections

  • VersionNo.ini
  • bdzsfx.sfx
    .exe windows:5 windows x86 arch:x86

    a0f362b046a3a39901b352bfa847934b


    Headers

    Imports

    Sections

  • bdzshl32.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    238d57bd3115142687f772e7b422ee95


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • bdzshl64.dll
    .dll regsvr32 windows:5 windows x64 arch:x64

    826572c86aef76275da9521b39f071bf


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • bz.exe
    .exe windows:5 windows x86 arch:x86

    4a6e68c2372c4ddfe82b1f00f756aed1


    Code Sign

    Headers

    Imports

    Sections

  • config.ini
  • icons/default/001.ico
  • icons/default/7z.ico
  • icons/default/Bandizip.ico
  • icons/default/_desc.ini
  • icons/default/alz.ico
  • icons/default/bz2.ico
  • icons/default/cab.ico
  • icons/default/egg.ico
  • icons/default/gz.ico
  • icons/default/iso.ico
  • icons/default/lha.ico
  • icons/default/lzh.ico
  • icons/default/rar.ico
  • icons/default/tar.ico
  • icons/default/tbz.ico
  • icons/default/tbz2.ico
  • icons/default/tgz.ico
  • icons/default/zip.ico
  • icons/default/zipx.ico
  • lang/Korean.ini
    .ps1
  • resource.h
  • skin.data
    .zip
  • bar2.png
    .png
  • big_btn_close_check_off.png
    .png
  • big_btn_close_check_on.png
    .png
  • big_btn_folder.png
    .png
  • big_btn_folder_check_off.png
    .png
  • big_btn_folder_check_on.png
    .png
  • big_btn_minimize_to_tray.png
    .png
  • big_btn_zipfolder.png
    .png
  • btn_close.png
    .png
  • btn_toolbar.png
    .png
  • btn_toolbar_l.png
    .png
  • btn_toolbar_rd.png
    .png
  • resizer.png
    .png
  • resizer_l.png
    .png
  • setting_arrow.png
    .png
  • setting_lang_bkgnd.png
    .png
  • setting_tab_0.png
    .png
  • setting_tab_1.png
    .png
  • sf_btn_frame.png
    .png
  • sf_computer.png
    .png
  • sf_desktop.png
    .png
  • sf_document.png
    .png
  • sf_picture.png
    .png
  • skin_compress_dlg.xml
  • skin_extract_dlg.xml
  • skin_main_ltr.xml
  • skin_main_rtl.xml
  • skin_select_folder.xml
  • skin_setting_shell.xml
  • skin_setting_tab.xml
  • small_btn_check_off.png
    .png
  • small_btn_check_on.png
    .png
  • small_btn_folder.png
    .png
  • small_btn_minimize_to_tray.png
    .png
  • small_btn_zipfolder.png
    .png
  • static_frame_sunken.png
    .png
  • tb_btn_add.png
    .png
  • tb_btn_bugreporter.png
    .png
  • tb_btn_codepage.png
    .png
  • tb_btn_create.png
    .png
  • tb_btn_delete.png
    .png
  • tb_btn_extract.png
    .png
  • tb_btn_open.png
    .png
  • tb_btn_test.png
    .png
  • tb_btn_view.png
    .png
  • skina.data
    .zip
  • btn_next.png
    .png
  • btn_prev.png
    .png
  • skin.xml
  • unace32.exe
    .exe windows:5 windows x86 arch:x86

    56bac85561f78132ca190bf57013fc88


    Headers

    Imports

    Sections

  • unacev2.dll
    .dll windows:1 windows x86 arch:x86

    8390514c40641509cd0941c1fb7588ab


    Headers

    Imports

    Exports

    Sections