Overview

overview

3

Static

static

3

0bbf94385e...18.exe

windows7-x64

3

0bbf94385e...18.exe

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$TEMP/sobar.exe

windows7-x64

3

$TEMP/sobar.exe

windows10-2004-x64

3

superedit.exe

windows7-x64

1

superedit.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    0bbf94385e1ea8713fa568debe1b0baf_JaffaCakes118

  • Size

    576KB

  • MD5

    0bbf94385e1ea8713fa568debe1b0baf

  • SHA1

    e47a34ae7aefe4f45753789d37fa5fc25c9ab839

  • SHA256

    d35dc6361388fff2cec7d966f9ef8eb702c70b992f2c197ef7e6a5ebc2f39586

  • SHA512

    b7f3a06999e179fc067605fc9ec7014b6ce0ecbd4a797225a6a6ca02c848609cd1cd63ce3c9392b5e734ad148ee065e7618fd921d75428034ea8b1612fa5f183

  • SSDEEP

    12288:0Cy5tTUrN603x0+96uhkNDLqhe3nezPNret0sH4WpYpxgg7+V9J3DTE:Kt+F3x0+Uu2RLfyV61EpxgsSDTA

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 0bbf94385e1ea8713fa568debe1b0baf_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    dfb06052e74b26a42b0e490bd1c07959


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    0b51ce6ce6bf8d5c68b3ea9f3ac1bf2c


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • $SYSDIR/setup.ico
  • $SYSDIR/wagamm.ico
  • $TEMP/sobar.exe
    .exe windows:4 windows x86 arch:x86

    18bc6fa81e19f21156316b1ae696ed6b


    Headers

    Imports

    Sections

  • superedit.exe
    .exe windows:4 windows x86 arch:x86

    79786ee1da485a01d5dc8f558be3a021


    Headers

    Imports

    Sections