General

  • Target

    07a3273b9918b7ecbd2a22b3a8e61bc1_JaffaCakes118

  • Size

    101KB

  • MD5

    07a3273b9918b7ecbd2a22b3a8e61bc1

  • SHA1

    c3a101466578a60b4a15c508983d6cb4cf48da8e

  • SHA256

    29b732557cb9e5f15b0c92ce6efb0c2c5ef22bd59068f3a87d40c4560ebaa2b5

  • SHA512

    3f1dd243cc8bd80113498781eba2c8b99c6ad765dcd3ef45380519f0705f4fdabb332aa7532a910a0d8e7039817d7d15412477355fd79a2888a96119bd9d960e

  • SSDEEP

    1536:ApgpHzb9dZVX9fHMvG0D3XJdgaGtB1V/bax8isQzxX/8b+qJSaLEYdVN25+Q/:WgXdZt9P6D3XJW3z/+Dzx0b+qJSsNzQ/

Score
3/10

Malware Config

Signatures

  • Unsigned PE 7 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs

Files

  • 07a3273b9918b7ecbd2a22b3a8e61bc1_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/SelfDelete.dll
    .dll windows:4 windows x86 arch:x86

    3d91458bc90a151726bcfdaeff902d08


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • EBcds.exe
    .exe windows:4 windows x86 arch:x86

    3b546aa52c99b1652e2a5900a879add6


    Headers

    Imports

    Sections

  • EBcdssvc.exe
    .exe windows:4 windows x86 arch:x86

    01a8cf5c1a95c0b706020d91411104f3


    Headers

    Imports

    Sections

  • uninstall.exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/KillProcDLL.dll
    .dll windows:4 windows x86 arch:x86

    815c88741b87a0210c457b00b57bf9c6


    Headers

    Imports

    Exports

    Sections