General

  • Target

    9402e832984b8dbf9081c70bc5e87c92_JaffaCakes118

  • Size

    21.4MB

  • MD5

    9402e832984b8dbf9081c70bc5e87c92

  • SHA1

    a3dd3ebaf52d659a77f043a0f528146921761daa

  • SHA256

    d007c3b3cd0e95e4b68caa9d9fb2a5c158ef35cfa31b2569f4f08f5c891dd11a

  • SHA512

    8eae3da84efd6b452729414e338a9f414f68cba4f70459f5fc10ad04145c06d580591be2c5fbc9fe39198c4ddb10c3cfd3c54b51fb5d2f31e965c5573e69e0df

  • SSDEEP

    393216:9a5TunvCvp0W+EJSTUGFwfT66foC3Psl/UWkKIw7vyaOWivtZbXz:9aZunKvp0WhJhIw7xQumMWkEryaYfzz

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 30 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • 9402e832984b8dbf9081c70bc5e87c92_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/SimpleSC.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    8c8a576201f68de1a3f26fc723b9f30f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    38e7b5c3ee58b43a91f9679e94aabd09


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:4 windows x86 arch:x86

    c9fc7f6df8fedf8f8f1f9f820c072664


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsisFirewall.dll
    .dll windows:4 windows x86 arch:x86

    1a4c99175e8891c64634680f4f238d51


    Headers

    Imports

    Exports

    Sections

  • 7za.dll
    .dll windows:4 windows x86 arch:x86

    71fc45db7a81ce236f432a828a4e8fcd


    Headers

    Imports

    Exports

    Sections

  • Ark32_v2.dll
    .dll windows:5 windows x86 arch:x86

    c04a32761b82ce14aa23ba289d6edae9


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • CCheck.dll
    .dll windows:4 windows x86 arch:x86

    3ccd7aeac3502efb4aa98f641179ddca


    Headers

    Imports

    Exports

    Sections

  • Check.exe
    .exe windows:5 windows x86 arch:x86

    eb87572b82b0ef7e2a2e96b03a50d6e9


    Code Sign

    Headers

    Imports

    Sections

  • M2diskCMC.dll
    .dll windows:4 windows x86 arch:x86

    6860b3f1d084683910d13be4770134ac


    Headers

    Imports

    Exports

    Sections

  • MCheck.dll
    .dll windows:4 windows x86 arch:x86

    0d4af95c14ef561b4957488db06a5f28


    Headers

    Imports

    Exports

    Sections

  • Me2DiskLocal.exe
    .exe windows:5 windows x86 arch:x86

    a2150e7f14f95e259edb290e56171a6e


    Code Sign

    Headers

    Imports

    Sections

  • Me2DiskService.exe
    .exe windows:5 windows x86 arch:x86

    381cdfeb0d343d56e8f82306f1802e2f


    Code Sign

    Headers

    Imports

    Sections

  • Me2disk.txt
  • Me2diskUp.exe
    .exe windows:5 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • MediaInfo.dll
    .dll windows:4 windows x86 arch:x86

    9516debaeb501cc020b83265018f09ca


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • MediaInfo_v2.dll
    .dll windows:4 windows x86 arch:x86

    9516debaeb501cc020b83265018f09ca


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Mfilter.dll
    .dll windows:5 windows x86 arch:x86

    06c3be29433398a47f8d7248582d0ef8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • MurekaAVD.exe
    .exe windows:4 windows x86 arch:x86

    412bea62fabfb867a30f2f52415d7a87


    Headers

    Imports

    Sections

  • MurekaWma.dll
    .dll windows:4 windows x86 arch:x86

    912a734a8d2be9fc202856550ddf8125


    Headers

    Imports

    Exports

    Sections

  • Uninstall.exe.nsis
  • ZHashGen.dll
    .dll windows:4 windows x86 arch:x86

    8b111a4278cfac79c7f9378d33e27bd6


    Headers

    Imports

    Exports

    Sections

  • _Me2disk.ico
  • avcodec-54.dll
    .dll windows:4 windows x86 arch:x86

    81637aae43862b8092a3cfa86132078d


    Headers

    Imports

    Exports

    Sections

  • avdevice-54.dll
    .dll windows:4 windows x86 arch:x86

    7b33092859821c1c5d854e434521b068


    Headers

    Imports

    Exports

    Sections

  • avfilter-3.dll
    .dll windows:4 windows x86 arch:x86

    bd172abdb3eb13907d22297f36b36334


    Headers

    Imports

    Exports

    Sections

  • avformat-54.dll
    .dll windows:4 windows x86 arch:x86

    c56d7f29defa8cf45f8d803c3e4210bd


    Headers

    Imports

    Exports

    Sections

  • avutil-52.dll
    .dll windows:4 windows x86 arch:x86

    8b40e0c10cf825582424578dcd91b64a


    Headers

    Imports

    Exports

    Sections

  • checkDCF.dll
    .dll windows:5 windows x86 arch:x86

    c424e2b132370a4ab540bd7034f5f741


    Headers

    Imports

    Exports

    Sections

  • ckpcodec.dll
    .dll windows:4 windows x86 arch:x86

    77989818cc4a13d2cd77bfe05183ef25


    Headers

    Imports

    Exports

    Sections

  • conkeeper.dll
    .dll windows:5 windows x86 arch:x86

    9628f0e58909bbf12b0fa3d5eb9c1ecf


    Headers

    Imports

    Exports

    Sections

  • conkeeper64.dll
    .dll windows:5 windows x64 arch:x64

    fe42f6a8314a9bc7a43c0adbd48caf1b


    Headers

    Imports

    Exports

    Sections

  • detect.exe
    .exe windows:5 windows x86 arch:x86

    bce2c5434e6542d41b4299029024fd74


    Code Sign

    Headers

    Imports

    Sections

  • detect_service.exe
    .exe windows:5 windows x86 arch:x86

    06df045f03c96a82f2cd1cb580261f3c


    Code Sign

    Headers

    Imports

    Sections

  • ippcore-5.2.dll
    .dll windows:4 windows x86 arch:x86

    0e7c365b005593db9b28cb78e8ef7598


    Headers

    Imports

    Exports

    Sections

  • ippi-5.2.dll
    .dll windows:4 windows x86 arch:x86

    645887943932e0434e30e1c9fa6a9d90


    Headers

    Imports

    Exports

    Sections

  • ippipx-5.2.dll
    .dll windows:4 windows x86 arch:x86

    708a9f843202588e00b0e24812a08533


    Headers

    Imports

    Exports

    Sections

  • libETC.dll
    .dll windows:4 windows x86 arch:x86


    Code Sign

    Headers

    Exports

    Sections

  • libguide40.dll
    .dll windows:4 windows x86 arch:x86

    fb01e389dde72dc5b85c9e61837430ae


    Headers

    Imports

    Exports

    Sections

  • msvcr100.dll
    .dll windows:5 windows x86 arch:x86

    5271d5ce8b44dd47bc92563e27585466


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • mystic32.dll
    .dll windows:5 windows x86 arch:x86

    a7d9dcdeba357763b729935bc94c2db4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • nat.dll
    .dll windows:5 windows x86 arch:x86

    6718812015ecf58c6c481535e84155b6


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • postproc-52.dll
    .dll windows:4 windows x86 arch:x86

    c260495236370ed97a48ada8e4a693ad


    Headers

    Imports

    Exports

    Sections

  • sendPurchasedData.dll
    .dll windows:5 windows x86 arch:x86

    a03e9eda30a097bd16a40fd2a551ed98


    Headers

    Imports

    Exports

    Sections

  • svc_setup_3.5.4.26.exe
    .exe windows:1 windows x86 arch:x86


    Code Sign

    Headers

    Sections

  • swresample-0.dll
    .dll windows:4 windows x86 arch:x86

    bb54ca6f84ada591f67da0110e9d2b87


    Headers

    Imports

    Exports

    Sections

  • swscale-2.dll
    .dll windows:4 windows x86 arch:x86

    bdd686222e4dc451f28b77a336761e78


    Headers

    Imports

    Exports

    Sections

  • unace32.exe
    .exe windows:5 windows x86 arch:x86

    56bac85561f78132ca190bf57013fc88


    Code Sign

    Headers

    Imports

    Sections

  • unrar.dll
    .dll windows:5 windows x86 arch:x86

    4756ad76192a5221437dafbbeedab3e6


    Code Sign

    Headers

    Imports

    Exports

    Sections