General

  • Target

    2852ab3974259e76c50747b1982d74c8_JaffaCakes118

  • Size

    1.7MB

  • MD5

    2852ab3974259e76c50747b1982d74c8

  • SHA1

    069fdba2f3f3249c9552a58b820f26d9e7a79a2f

  • SHA256

    0534bd590fba16ba535feaa26babf7dd209ab721ade2c11ffbd26dd44712015a

  • SHA512

    d78c52e5a7abcd9b28a5c4e6dcbe7b51e87ca4673e0aea8396aa8a9de6ef9b959ea69b939ccd5661f308746f79c0fddb18525e93128ae0d49b3610ae0cb40ecb

  • SSDEEP

    24576:qmfQ/C9e3rJ26ysOflZVk77yhLqboLnfGwgshmIicY2sik7qTGTS5Ebk1ocTeBKX:/z92QjLfGaMFEqUQkpeBrQVDrg6mV8

Score
3/10

Malware Config

Signatures

  • Unsigned PE 14 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 6 IoCs

Files

  • 2852ab3974259e76c50747b1982d74c8_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $TEMP/mirc632.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $OUTDIR/uninstall.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    4ec328f99bdd944fc98d8a5cf11f7a62


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UAC.dll
    .dll windows:4 windows x86 arch:x86

    656dba6e265de40f62ef9a64f76a46b2


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/mIRC.dll
    .dll windows:4 windows x86 arch:x86

    3511735b00f358d705fae7c78bc14ead


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $TEMP/uninstall.exe
    .exe windows:4 windows x86 arch:x86

    03a8d1036fdff90b08b57dbc547bd75a


    Headers

    Imports

    Sections

  • $PLUGINSDIR/AccessControl.dll
    .dll windows:4 windows x86 arch:x86

    46e93a34138fb999d8d73f9ecb219652


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    4ec328f99bdd944fc98d8a5cf11f7a62


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UAC.dll
    .dll windows:4 windows x86 arch:x86

    656dba6e265de40f62ef9a64f76a46b2


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/confirm.ini
  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/mIRC.dll
    .dll windows:4 windows x86 arch:x86

    3511735b00f358d705fae7c78bc14ead


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/options.ini
  • $_12_/mirc.ini
  • $_12_/scripts/aliases.ini
  • $_12_/scripts/popups.ini
  • $_12_/servers.ini
  • $_12_/urls.ini
  • defaults/mirc.ini
  • defaults/scripts/aliases.ini
  • defaults/scripts/popups.ini
  • defaults/servers.ini
  • defaults/urls.ini
  • ircintro.chm
    .chm
  • mirc.chm
    .chm
  • mirc.exe
    .exe windows:4 windows x86 arch:x86

    c3f2c23d53037673113d97897d0a7860


    Headers

    Imports

    Sections

  • readme.txt
  • versions.txt

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.