Overview

overview

10

Static

static

3

2b7b6fc8b0...18.exe

windows7-x64

10

2b7b6fc8b0...18.exe

windows10-2004-x64

7

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$TEMP/glee.dll

windows7-x64

1

$TEMP/glee.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2b7b6fc8b0a2e9fda739eb8aa8ee6d57_JaffaCakes118

  • Size

    281KB

  • MD5

    2b7b6fc8b0a2e9fda739eb8aa8ee6d57

  • SHA1

    106814657fd903bb289f89679eb6b0ccd877e292

  • SHA256

    2a74e566b9590e7225627b3c7a262162cb09077bc04c87347e40cd693c03718b

  • SHA512

    59a6699a04d1bc3fe0c420969a327c6afcde6e15c09c28f655e9c093e394ef214373d0d7f1ab3fbde143b949cb7511a93beb5c03ed17c29a4aa98b9e0d528c8b

  • SSDEEP

    6144:S58KGEq8JpicwCI4WT+Vhri8y6aQlAbfUxiRmyJjZMiv:NAq8jc4Hhr/y6YUxQCiv

Score
3/10

Malware Config

Signatures

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 2b7b6fc8b0a2e9fda739eb8aa8ee6d57_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    57e98d9a5a72c8d7ad8fb7a6a58b3daf


    Headers

    Imports

    Sections

  • $PLUGINSDIR/Splash.dll
    .dll windows:4 windows x86 arch:x86

    68076cb273e921c026729fab6f5e6234


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UserInfo.dll
    .dll windows:4 windows x86 arch:x86

    cce05dea98cbac3a9d486b233588f528


    Headers

    Imports

    Exports

    Sections

  • $TEMP/Blackberry
  • $TEMP/FileExtension.targetsize-24.png
    .png
  • $TEMP/GetStartedAppList.targetsize-48_altform-unplated.png
    .png
  • $TEMP/PhotosAppList.scale-100.png
    .png
  • $TEMP/glee.dll
    .dll windows:5 windows x86 arch:x86

    f111e5cfb903780c62c9265be4477b81


    Headers

    Imports

    Exports

    Sections