General

  • Target

    6e44038874ba9925eb17a7e65dae99ea_JaffaCakes118

  • Size

    3.0MB

  • MD5

    6e44038874ba9925eb17a7e65dae99ea

  • SHA1

    0169c3e0d6c4eb7a20609cea73ffccdfe29f1ec8

  • SHA256

    b38764ac5a035a5d3357f2c68c65a090fbd5321c1309dedf73e4f540e5500f27

  • SHA512

    9f7153012fbb60796fdf307ae5283c1e331cde2a0a3da598a86a042a9ae86aa6a7e9c0f7bc6387d8fc50ebb90c173165714ca4dccfea9380984f584fb7d5d1ed

  • SSDEEP

    49152:ow1gJ2xOZi2p1x37cn6LYznadZT/eCYZYdrCyTD0hiJKMzDnpUpjSdKp+/4lpTOJ:xuJ2IZjDemvfBQjToJHLCpjGKD0lL

Score
3/10

Malware Config

Signatures

  • Unsigned PE 14 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • 6e44038874ba9925eb17a7e65dae99ea_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    59a4a44a250c4cf4f2d9de2b3fe5d95f


    Headers

    Imports

    Sections

  • $PLUGINSDIR/20141021-search-module-install-v15-CENTER-AREA.bmp
  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    38e7b5c3ee58b43a91f9679e94aabd09


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    6b7d154c806f1e47db325229c300c6df


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:5 windows x86 arch:x86

    a49b0342971aa199fc6349725b90146d


    Headers

    Imports

    Exports

    Sections

  • $WINDIR/System32/rsrcs.dll
    .dll windows:6 windows x86 arch:x86

    f2ad6c85f508d5e91a17113fe7cd75f8


    Headers

    Imports

    Sections

  • $_2_/SBIEBrowserHelperObject.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    384ec22056f579e3b833082fd635752e


    Headers

    Imports

    Exports

    Sections

  • $_2_/rlz_id.dll
    .dll windows:5 windows x86 arch:x86

    ad339b48d44a37aa23f1b91ea2f60354


    Headers

    Imports

    Exports

    Sections

  • $_2_/sma.exe
    .exe windows:6 windows x64 arch:x64

    69a9b5b78926e777f4c110f1fe7c1851


    Headers

    Imports

    Sections

  • $_2_/smci32.dll
    .dll windows:5 windows x86 arch:x86

    0bb95f7d2536595643ae9a61f669a4df


    Headers

    Imports

    Exports

    Sections

  • $_2_/smci64.dll
    .dll windows:6 windows x64 arch:x64

    fec6cf03dfa5aedead3b93038d121b45


    Headers

    Imports

    Exports

    Sections

  • $_2_/smi32.exe
    .exe windows:5 windows x86 arch:x86

    57b9588e52d0d708e98fac1181f4a33e


    Headers

    Imports

    Sections

  • $_2_/smi64.exe
    .exe windows:6 windows x64 arch:x64

    24e841232e28957f5207a523c795b303


    Headers

    Imports

    Sections

  • $_2_/smu.exe
    .exe windows:6 windows x64 arch:x64

    a490c21ecefc0021ff8121478ec2cecd


    Headers

    Imports

    Sections

  • $_2_/smw.sys
    .dll windows:6 windows x64 arch:x64

    11ceadfe6165d57b41438b3cd9430314


    Code Sign

    Headers

    Imports

    Sections