Overview

overview

7

Static

static

7

06f39b0984...18.exe

windows7-x64

7

06f39b0984...18.exe

windows10-2004-x64

7

$PLUGINSDI...64.dll

windows7-x64

3

$PLUGINSDI...64.dll

windows10-2004-x64

3

$PLUGINSDI...RL.dll

windows7-x64

3

$PLUGINSDI...RL.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

ac3decoder.dll

windows7-x64

7

ac3decoder.dll

windows10-2004-x64

7

avcodec.dll

windows7-x64

3

avcodec.dll

windows10-2004-x64

3

avformat.dll

windows7-x64

3

avformat.dll

windows10-2004-x64

3

dvdreader.dll

windows7-x64

1

dvdreader.dll

windows10-2004-x64

1

help.chm

windows7-x64

1

help.chm

windows10-2004-x64

1

iPod_Converter.exe

windows7-x64

4

iPod_Converter.exe

windows10-2004-x64

4

mpeg2decoder.dll

windows7-x64

1

mpeg2decoder.dll

windows10-2004-x64

1

soft2cn£�...÷.exe

windows7-x64

1

soft2cn£�...÷.exe

windows10-2004-x64

1

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    06f39b09840218e476dafb102379fbda_JaffaCakes118

  • Size

    3.6MB

  • MD5

    06f39b09840218e476dafb102379fbda

  • SHA1

    c50a933ba51a55bf7d35a27c6e38f2a4acd0e056

  • SHA256

    17b60767e05aee684093292752694ed77136107ccb83e77304d31706d3b920ed

  • SHA512

    d35fa738cfcef9f0df25927e88b22f8c9d5ed00f5ead03df60b8e2320a7832f2fa5998e35b3e33b385f225b8eda3d09266cd2e21b15d31dcdd68bf6be6559510

  • SSDEEP

    98304:3SLpPrjbwDqBS4Tkt77+kem5GeBQffdnx/z1wbH/:3SLpPrjsl6kepfJx1wbH/

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 2 IoCs

    Detects file using ACProtect software.

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 17 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs
    installer

Files

  • 06f39b09840218e476dafb102379fbda_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/Base64.dll
    .dll windows:4 windows x86 arch:x86

    1ba6926a1ee4e4cda118768081f528d5


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/BrandingURL.dll
    .dll windows:4 windows x86 arch:x86

    135de77644e2add2fd9dd8176740e7e0


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/blowfish.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    3f1149a3053980fe6b461521d2b55a2c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $WINDIR/Amadis DVD to iPod Converter.INI
  • ac3decoder.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • amadisdvd.smf
  • avcodec.dll
    .dll windows:4 windows x86 arch:x86

    ed0d9685d75815d5495a4f7b0d451bcc


    Headers

    Imports

    Exports

    Sections

  • avformat.dll
    .dll windows:4 windows x86 arch:x86

    450964175f8c8dd0adf3e6b54471fccc


    Headers

    Imports

    Exports

    Sections

  • dvdreader.dll
    .dll windows:4 windows x86 arch:x86

    06de69a03a6a288ddffa0754a2f2e1f3


    Headers

    Imports

    Exports

    Sections

  • help.chm
    .chm
  • iPod_Converter.exe
    .exe windows:4 windows x86 arch:x86

    f0aed4f566840a701ae1beb9657c41d5


    Headers

    Imports

    Sections

  • license.txt
  • mpeg2decoder.dll
    .dll windows:4 windows x86 arch:x86

    df55646542b57cedd08689ccc1f3b206


    Headers

    Imports

    Exports

    Sections

  • readme.txt
  • settings.ini
  • soft2cn£®comºº»¯ËµÃ÷.exe
    .exe windows:1 windows x86 arch:x86


    Headers

    Exports

    Sections

  • tips.txt
  • uninst.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • vobinput.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • ×¢²áÐÅÏ¢.txt