Overview

overview

7

Static

static

3

275f95d09e...18.exe

windows7-x64

7

275f95d09e...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

Advanced P...lp.chm

windows7-x64

1

Advanced P...lp.chm

windows10-2004-x64

1

PdfPasswor...er.exe

windows7-x64

1

PdfPasswor...er.exe

windows10-2004-x64

1

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    275f95d09e73b769d15252229d3fb53d_JaffaCakes118

  • Size

    1.2MB

  • MD5

    275f95d09e73b769d15252229d3fb53d

  • SHA1

    d245190e6319d97cab5b2da61614a1a8a1610322

  • SHA256

    248a447d605ef36742625ebc628cc50c49c0bb3f9171aa1bf168a88d2c2af671

  • SHA512

    fe2e617460f4bcf5258cd916eaf723d05af61d0d2f4f0aff39f43224293bd26ba76632acf671c4571ac89d1dafc78939287951f1bf060caa6913157046ff9c49

  • SSDEEP

    24576:ULI5wxkzjQeJEtE84CRwNyU+Ufi33vNRTnim0:ULIWxk/QbEwRwmUwqm0

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs
    installer

Files

  • 275f95d09e73b769d15252229d3fb53d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • Advanced PDF Password Remover 5.0 Help.chm
    .chm
  • PdfPasswordRemover.exe
    .exe windows:5 windows x86 arch:x86

    552175de89b61495323501c69e726b92


    Headers

    Imports

    Sections

  • image/AboutTop.bmp
  • image/Bottom.bmp
  • image/BottomButton.bmp
  • image/ButtonAddFile.bmp
  • image/ButtonBK.bmp
  • image/ButtonBrowse.bmp
  • image/ButtonBuyNow.bmp
  • image/ButtonClose.bmp
  • image/ButtonHelp.bmp
  • image/ButtonHome.bmp
  • image/ButtonInfo.bmp
  • image/ButtonLine.bmp
  • image/ButtonMin.bmp
  • image/ButtonRemoveAll.bmp
  • image/ButtonRemoveFile.bmp
  • image/ButtonStart.bmp
  • image/BuyTrialButtonBuyNow.bmp
  • image/BuyTrialButtonEvaluate.bmp
  • image/BuyTrialButtonRegister.bmp
  • image/BuyTrialClock.bmp
  • image/BuyTrialMiddle.bmp
  • image/BuyTrialTop.bmp
  • image/InsideDlgBottomBorder.bmp
  • image/InsideDlgLeftBorder.bmp
  • image/InsideDlgRightBorder.bmp
  • image/InsideDlgTopBorder.bmp
  • image/Left.bmp
  • image/RegisterButtonCancel.bmp
  • image/RegisterButtonOK.bmp
  • image/RegisterTop.bmp
  • image/Right.bmp
  • image/Top.bmp
  • image/list_hearder.bmp
  • uninst.exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections