General

  • Target

    089e5228daf259a6d1ddda4354b1d80d_JaffaCakes118

  • Size

    3.6MB

  • MD5

    089e5228daf259a6d1ddda4354b1d80d

  • SHA1

    7060e91f54330b3c01f12193b381e49ce42aecf9

  • SHA256

    b62a3ac2a5850cfe67e4b720979ef147f3de70a8dd9fc5e534c8b79433a6a966

  • SHA512

    87af158384f8a8becfec7e4a0d0f3adba00653f3d597da234dc9848047f44c9fd61d10cc935f863441e17b2f129903414aacbef63c378fd1d4bcc50b75216413

  • SSDEEP

    49152:q0c24StiTTsdoNDjoJSFWWCycq1mFDbPd3Zm7BmKGMkO/VcmFJRUZYUxPIadLmEM:q36ivJDiSFdph1mPYAlO/hJ6ZYWhqnn

Score
3/10

Malware Config

Signatures

  • Unsigned PE 7 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs

Files

  • 089e5228daf259a6d1ddda4354b1d80d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    1c042238f43557c055fca8642de8a074


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/GameuxInstallHelper.dll
    .dll windows:6 windows x86 arch:x86

    d46feae5913f2b33d6159af1367e8ee7


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/InstGameInfoHelper.exe
    .exe windows:5 windows x86 arch:x86

    2f05f2531b6da725824fc913b1b92aff


    Headers

    Imports

    Sections

  • $PLUGINSDIR/IwinToolbar.exe
    .exe windows:4 windows x86 arch:x86

    72467ab5b1f21b6db7557829bab796cd


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/defaultthumbnail.bmp
  • $PLUGINSDIR/ftdownload.dat
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    d83f71e61ee459ee63ca3e829966a9dc


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/smartinstallAllinOne.exe
    .exe windows:4 windows x86 arch:x86

    81638d02019c0bfcaaf23a9c69f2f12c


    Code Sign

    Headers

    Imports

    Sections

  • AdminWorker.exe
    .exe windows:5 windows x86 arch:x86

    211467ece9f5deba02730cdb9a9df33f


    Code Sign

    Headers

    Imports

    Sections

  • Uninstall.exe
    .exe windows:4 windows x86 arch:x86

    1c042238f43557c055fca8642de8a074


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/GameuxInstallHelper.dll
    .dll windows:6 windows x86 arch:x86

    d46feae5913f2b33d6159af1367e8ee7


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • WebInstaller.exe
    .exe windows:5 windows x86 arch:x86

    fe31a1ea0465cd2d80098af8995d27d2


    Code Sign

    Headers

    Imports

    Sections

  • WebUpdater.bmp
  • WebUpdater.exe
    .exe windows:4 windows x86 arch:x86

    83c00363c07d1c012450b9f655248767


    Code Sign

    Headers

    Imports

    Sections

  • firefox/chrome.manifest
  • firefox/chrome/iwinarcade.jar
    .zip
  • content/about.css
  • content/about.xul
    .xml
  • content/contents.rdf
    .xml
  • content/icon.png
    .png
  • content/iwa-ovr.js
    .js
  • content/iwa-ovr.xul
    .xml
  • content/iwinarcade.js
  • content/uninstall.html
    .html
  • firefox/iWinArcadeLauncher.exe
    .exe windows:4 windows x86 arch:x86

    80ecfa2eb6a7155e205be13d4cdc1119


    Code Sign

    Headers

    Imports

    Sections

  • firefox/install.rdf
    .xml
  • firefox/version
  • gamepage/buynow.html
    .html .js polyglot
  • gamepage/common.js
    .js
  • gamepage/css/offline.css
  • gamepage/disconnected-upsell.html
    .html
  • gamepage/end.html
    .html
  • gamepage/expired.html
    .html
  • gamepage/images/alert32x32.gif
    .gif
  • gamepage/images/bg_header.gif
    .gif
  • gamepage/images/buttons/close-blue-28.gif
    .gif
  • gamepage/images/buttons/continue-orange-132.gif
    .gif
  • gamepage/images/buttons/yesiwantabackupcd-orange-197.gif
    .gif
  • gamepage/images/common/header-bg.gif
    .gif
  • gamepage/images/common/header-small-bg.gif
    .gif
  • gamepage/images/common/loading.gif
    .gif
  • gamepage/images/continuefreetrial-32.gif
    .gif
  • gamepage/images/global/logo-invis.gif
    .gif
  • gamepage/images/global/logo.gif
    .gif
  • gamepage/images/global/page-bg-swirly.gif
    .gif
  • gamepage/images/global/page-bg.gif
    .gif
  • gamepage/images/global/page-header-small-bg.jpg
    .jpg
  • gamepage/images/logo.jpg
    .jpg
  • gamepage/images/misc/blue-bottom-triangle.gif
    .gif
  • gamepage/images/misc/information.gif
    .gif
  • gamepage/images/ous/divider.gif
    .gif
  • gamepage/images/ous/eus.jpg
    .jpg
  • gamepage/images/ous/hotel-bg.gif
    .gif
  • gamepage/images/ous/hotel-iwin.gif
    .gif
  • gamepage/images/ous/opal.gif
    .gif
  • gamepage/images/ous/opalbox.jpg
    .jpg
  • gamepage/images/ous/ous-promo-banner.jpg
    .jpg
  • gamepage/images/plans/plan1.gif
    .gif
  • gamepage/images/plans/plan2.gif
    .gif
  • gamepage/images/plans/plan3.gif
    .gif
  • gamepage/images/product/feature.jpg
    .jpg
  • gamepage/open.html
    .html
  • gamepage/operationfailed.html
    .html .js polyglot
  • gamepage/scripts/disconnected-upsell.js
    .js
  • gamepage/scripts/popups.js
    .js
  • gamepage/scripts/prototype-1.6.js
    .js
  • gamepage/styles/base.css
  • gamepage/styles/disconnected-upsell.css
  • gamepage/styles/shoppingcart.css
  • gamepage/success.html
    .html
  • host.cfg
  • iWinGames.exe
    .exe windows:5 windows x86 arch:x86

    cda7ae01f6db653db8cf27d38fabeb34


    Code Sign

    Headers

    Imports

    Sections

  • iWinGamesHookIE.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    047274650477bff36e9ba8bcda1eb5af


    Headers

    Imports

    Exports

    Sections

  • iWinInfo.dll
    .dll regsvr32 windows:5 windows x86 arch:x86

    bd39a104c7ab499fe29cbb6f46c52ae5


    Headers

    Imports

    Exports

    Sections

  • iWinTrusted.exe
    .exe windows:5 windows x86 arch:x86

    8cd7ec1d569e76d3ca5c15ed1aa0ff93


    Code Sign

    Headers

    Imports

    Sections

  • pages/alert32x32.gif
    .gif
  • pages/arcadeCheck.js
    .js
  • pages/blank.html
    .html
  • pages/blank2.html
    .html
  • pages/error.html
    .html .js polyglot
  • pages/error404.css
  • pages/iwin_logo.gif
    .gif
  • pages/login.html
    .html
  • pages/maintenance.html
    .html
  • pages/offline.css
  • pages/offline.html
    .html
  • pages/offline.jpg
    .jpg
  • pages/offlineBg.gif
    .gif
  • pages/offline_tag.gif
    .gif
  • pages/orange-im-connected-60.gif
    .gif
  • pages/terrie404.gif
    .gif
  • pages/test.html
    .html .js polyglot
  • sounds/animation.wav
  • sounds/animationBack.wav
  • sounds/button_click.wav
  • sounds/coins.wav
  • sounds/download_completed.wav
  • sounds/slidebackin.wav
  • sounds/slideout.wav
  • sounds/start.wav

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.