Overview

overview

7

Static

static

3

1b343bc6b2...18.exe

windows7-x64

7

1b343bc6b2...18.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

$PLUGINSDI...a2.rtf

windows7-x64

4

$PLUGINSDI...a2.rtf

windows10-2004-x64

1

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    1b343bc6b2584c9ace9003fa43e4e849_JaffaCakes118

  • Size

    169KB

  • MD5

    1b343bc6b2584c9ace9003fa43e4e849

  • SHA1

    c1f81eec386fc5983e2c2d8388cea4be10c4356c

  • SHA256

    1d03718c73afbda82039519311e39b2f71171a47bdeec755f74c1d1d19a563b3

  • SHA512

    e29f868ed4feca79a24e0b0cced1f7ae52825c2d95c00f6f6cb0d817d6385f30a54a0f8467911a81e65d5422df260bdb982118a8eab9a5499769f9144361f1e6

  • SSDEEP

    3072:zgXdZt9P6D3XJr45M8rtCOQ4VJLxW2CkrNxzerQ4k2ufJ54VXI:ze34xL8rtChwJNuOvqQfLfJ5C4

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 1b343bc6b2584c9ace9003fa43e4e849_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    5bdcdde5acd7b395f3f3d19ebbb8c6cd


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/licdata2.rtf
    .rtf
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    1e2884056e655f2b7bc5a904e352fc80


    Headers

    Imports

    Exports

    Sections

  • $TEMP/comscore-header2.bmp
  • $TEMP/ps-header.bmp
  • $TEMP/ps1-page1.bmp