Overview

overview

7

Static

static

3

a27b6f03cc...18.exe

windows7-x64

7

a27b6f03cc...18.exe

windows10-2004-x64

7

$PLUGINSDIR/PW001.exe

windows7-x64

7

$PLUGINSDIR/PW001.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

Codecs/irLame.dll

windows7-x64

1

Codecs/irLame.dll

windows10-2004-x64

1

Codecs/irSndFile.dll

windows7-x64

1

Codecs/irSndFile.dll

windows10-2004-x64

1

Codecs/irVorbis.dll

windows7-x64

1

Codecs/irVorbis.dll

windows10-2004-x64

1

Codecs/irWMA.dll

windows7-x64

1

Codecs/irWMA.dll

windows10-2004-x64

1

Codecs/libsndfile.dll

windows7-x64

3

Codecs/libsndfile.dll

windows10-2004-x64

3

Jolix CD-D...er.chm

windows7-x64

1

Jolix CD-D...er.chm

windows10-2004-x64

1

Jolix CD-D...er.exe

windows7-x64

6

Jolix CD-D...er.exe

windows10-2004-x64

7

UpdateApp.exe

windows7-x64

1

UpdateApp.exe

windows10-2004-x64

1

cdrtools/cdda2wav.exe

windows7-x64

6

cdrtools/cdda2wav.exe

windows10-2004-x64

6

cdrtools/cdrecord.exe

windows7-x64

1

cdrtools/cdrecord.exe

windows10-2004-x64

1

cdrtools/cygwin1.dll

windows7-x64

3

cdrtools/cygwin1.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    a27b6f03cc2817d3f6eb4d880c875ada_JaffaCakes118

  • Size

    3.8MB

  • MD5

    a27b6f03cc2817d3f6eb4d880c875ada

  • SHA1

    720b57103d6a8b4edf9b697c3860c2535f581cd0

  • SHA256

    0cd656374a0f2c20253b9a156951d753157160d9b6735cc7cce1b0bac12424b6

  • SHA512

    3a70e55e7d466ee3ed901bedd0c90a00cbab797adb8ae4d79c8dac49da5214890686ecb65cd22dde3ae0c007455f1e1f82fedb82615824af35fad0ffdede0603

  • SSDEEP

    98304:DNJoE6ZQifex6kRI5VGQvstDxzKVUCqt2p5NYJotBw:DTN6Gif26LZvjVUCqMiJ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 16 IoCs

    Checks for missing Authenticode signature.

Files

  • a27b6f03cc2817d3f6eb4d880c875ada_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    be41bf7b8cc010b614bd36bbca606973


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/PW001.exe
    .exe windows:4 windows x86 arch:x86

    e00de6e48b9b06aceb12a81e7bf494c9


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:5 windows x86 arch:x86

    039bcbc605477e8e87ec550c2e60e748


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:6 windows x86 arch:x86

    11cd6df8cede073a0e00bd840833dd26


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:5 windows x86 arch:x86

    9ea5bdc8c90dfcffe309465c26c89758


    Headers

    Imports

    Exports

    Sections

  • Codecs/irLame.irc
    .dll windows:4 windows x86 arch:x86

    ae0f606a0de5cc7a5abd73efd3269303


    Headers

    Imports

    Exports

    Sections

  • Codecs/irSndFile.irc
    .dll windows:4 windows x86 arch:x86

    4c20d009f18ee5baa83127a9e9d9a7f2


    Headers

    Imports

    Exports

    Sections

  • Codecs/irVorbis.irc
    .dll windows:4 windows x86 arch:x86

    9ae399a101ababa6f0ff54a4a85b3ab9


    Headers

    Imports

    Exports

    Sections

  • Codecs/irWMA.irc
    .dll windows:4 windows x86 arch:x86

    9f2f89fb3603c619a0ba057f0845468b


    Headers

    Imports

    Exports

    Sections

  • Codecs/libsndfile.dll
    .dll windows:4 windows x86 arch:x86

    eb7015eeaaff6bad1fb7a59238c027d1


    Headers

    Imports

    Exports

    Sections

  • Jolix CD-DVD Burner.chm
    .chm
  • Jolix CD-DVD Burner.exe
    .exe windows:5 windows x86 arch:x86

    fa7a5c64fa5af36bb4c769a799b3807b


    Headers

    Imports

    Sections

  • UpdateApp.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • cdrtools/COPYING
  • cdrtools/cdda2wav.exe
    .exe windows:4 windows x86 arch:x86

    35cbe833d22981286985c85235bc754a


    Headers

    Imports

    Sections

  • cdrtools/cdrecord.exe
    .exe windows:4 windows x86 arch:x86

    4c9cf243b831189de5ff43457e78f83d


    Headers

    Imports

    Sections

  • cdrtools/cygwin1.dll
    .dll windows:4 windows x86 arch:x86

    400661656de0b22c9631b8a6779c390b


    Headers

    Imports

    Exports

    Sections

  • cdrtools/readcd.exe
    .exe windows:4 windows x86 arch:x86

    b67708b5c926f99c64399761351ab604


    Headers

    Imports

    Sections

  • irShell.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    13dc3d5558da46f069bab66538e6268a


    Headers

    Imports

    Exports

    Sections