General

  • Target

    224051240232a076abb3a14c2f7f5f94_JaffaCakes118

  • Size

    2.0MB

  • MD5

    224051240232a076abb3a14c2f7f5f94

  • SHA1

    06ef4d6664897bbcb87fc99b2fc836511a05fe0f

  • SHA256

    c9b03e1fc3b006d3abb6f34cbbde7cb52b19c7dd5d34c59c23ffad38d08aa8fd

  • SHA512

    2af8ec179cf70e833d8326fc9579a91423be8201e2cd1b11604ec68acb10123c73a527e74342f299c889fb170f70bdc096bfc4c2bd8ece099bf43e008bba734f

  • SSDEEP

    49152:TLJMIx2kiMsh/JSdfW6m4uBsHeiYkIOtGgnLPG59:TLJMIsk1jdfWcukezsGP

Score
3/10

Malware Config

Signatures

  • Unsigned PE 3 IoCs

    Checks for missing Authenticode signature.

Files

  • 224051240232a076abb3a14c2f7f5f94_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    b729b61eb1515fcf7b3e511e4e66258b


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:5 windows x86 arch:x86

    cd90e33ffbc335413a25300c682c83df


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/SetupHelper.dll
    .dll windows:4 windows x86 arch:x86

    9082e4116a9f4c78e0d62adbf746954e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $_8_/CheckAv.etf
  • $_8_/Common.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    473cdd61fc97879fb797054518dd2125


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_8_/DIFxAPI.dll
    .dll windows:6 windows x86 arch:x86

    bced6390751f7df672767c6c60fd16dc


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_8_/FileOpen.etf
  • $_8_/FileUnlock.dll
    .dll windows:4 windows x86 arch:x86

    ca82741618d4e0cd9b82efd1fb295997


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_8_/GF.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    dbdeda49d1e75da9ba5d1b7676332387


    Headers

    Imports

    Exports

    Sections