General

  • Target

    0387e36e8a64e5e6e925bed6fbdcd18f_JaffaCakes118

  • Size

    1.1MB

  • MD5

    0387e36e8a64e5e6e925bed6fbdcd18f

  • SHA1

    93bb6c5436f2dcca65e3770ca6d2aaf7569b087c

  • SHA256

    9d5520d7e7b6f9a5939f393ae52d0c5023a668c2ab0178c7fcfd6ea6ace87297

  • SHA512

    7325eb2809f1b636e3ae2bf104ec66094d9db00178964b094d1a5e048a466b196153a0a0a0ecab082633c92f092b2b1c8a0eeabf1eaf0a2cf96bf14f41aa3733

  • SSDEEP

    24576:B+br0LEZ+dYoVLAbXDuIkWkfIIqDCi3ikMM7+9qkvsiEZczvZqJ:Sr0AZ+aoOD/kxfIN33CuqqMsGvZy

Score
3/10

Malware Config

Signatures

  • Unsigned PE 12 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 3 IoCs

Files

  • 0387e36e8a64e5e6e925bed6fbdcd18f_JaffaCakes118
    .zip
  • HA_DVDIdentifier401_Fire.exe
    .exe windows:4 windows x86 arch:x86

    4f2145f489d9c324280558d2e08c717d


    Headers

    Imports

    Sections

  • $PLUGINSDIR/CustomPage.ini
  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    9d433976e02d79532f0d635ee81d0b20


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/Splash.dll
    .dll windows:4 windows x86 arch:x86

    dfca8f6698c93c9475bec373d99a1efd


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/Splash_logo-2.BMP
  • $PLUGINSDIR/StartMenu.dll
    .dll windows:4 windows x86 arch:x86

    7d85f9c30f9e87a65fff848de2c96ac1


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    4ec328f99bdd944fc98d8a5cf11f7a62


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/bgm_ÎÒÃǵİ®.mid
  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $TEMP/Assist_hanzify.exe
    .exe windows:4 windows x86 arch:x86

    b711f65a9aff6a22fb2f57f0ac8bda33


    Headers

    Imports

    Sections

  • $R0
    .dll regsvr32 windows:4 windows x86 arch:x86

    3e01e5e72f4a727eb05e25847cae4d97


    Headers

    Imports

    Exports

    Sections

  • Assist/$R0
    .dll regsvr32 windows:4 windows x86 arch:x86

    e9559ac95b98ff4786d6b8f305be59c0


    Headers

    Imports

    Exports

    Sections

  • $TEMP/DUDU_HH.exe
    .exe windows:4 windows x86 arch:x86

    86057e03f22e7f492f3fdd45c4a17706


    Headers

    Imports

    Sections

  • DVD Identifier.chm
    .chm
  • DVD Identifier.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • Data/manufacturers.dat
  • Data/manufacturers_v2.dat
  • Data/manufacturers_v3.dat
  • uninst.exe
    .exe windows:4 windows x86 arch:x86

    4f2145f489d9c324280558d2e08c717d


    Headers

    Imports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:4 windows x86 arch:x86

    8fc31e88f4e2f35a7d6873d897a2680d


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • ºº»¯ËµÃ÷.txt
  • ����˵��.txt
  • ����������.txt