General

  • Target

    0b877d67baf1304b5f5496f438aada69_JaffaCakes118

  • Size

    224KB

  • MD5

    0b877d67baf1304b5f5496f438aada69

  • SHA1

    4839e7c700c2871e98b4f4e65985156261f54ef9

  • SHA256

    4d70e1cd0a808bf84a1821c40536017c2e7c7bf5dfc7486c4aaa75f70c8c7e5c

  • SHA512

    ac7148d6347754f315d98b381334d5f1509ff48161ee98accebea637c7804cc7be20e051064950d7891e3697ed82d7eb58c509bcaba1b871598b6845312f47c2

  • SSDEEP

    3072:tFcRhSdNJ9+3ACIr4R9N9ScYQK0Uyeyw18Knb+Cdr7QzxBhKieiOklkX1o:wQt54XbjYQBUgS8Kb+k3qhKiPK1o

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 0b877d67baf1304b5f5496f438aada69_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    fa87d05da8cd992552ea846b6a9a1bb2


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:5 windows x86 arch:x86

    cd90e33ffbc335413a25300c682c83df


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/NSIS_Picasa_Unicode.dll
    .dll windows:4 windows x86 arch:x86

    ce84f0c40fec0f5df91db0dee8fa3c3f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp