Overview

overview

7

Static

static

3

3272f7fa4e...18.exe

windows7-x64

7

3272f7fa4e...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

Charles.exe

windows7-x64

1

Charles.exe

windows10-2004-x64

1

extra/Run Charles.bat

windows7-x64

1

extra/Run Charles.bat

windows10-2004-x64

1

lib/TrayIcon12.dll

windows7-x64

1

lib/TrayIcon12.dll

windows10-2004-x64

1

lib/activation.jar

windows7-x64

1

lib/activation.jar

windows10-2004-x64

1

lib/bouncycastle.jar

windows7-x64

1

lib/bouncycastle.jar

windows10-2004-x64

1

lib/charles.dll

windows7-x64

3

lib/charles.dll

windows10-2004-x64

3

lib/charles.jar

windows7-x64

1

lib/charles.jar

windows10-2004-x64

1

lib/charles_win32.dll

windows7-x64

1

lib/charles_win32.dll

windows10-2004-x64

1

lib/image4j.jar

windows7-x64

1

lib/image4j.jar

windows10-2004-x64

1

lib/jakart....8.jar

windows7-x64

1

lib/jakart....8.jar

windows10-2004-x64

1

lib/jdic.dll

windows7-x64

1

lib/jdic.dll

windows10-2004-x64

1

lib/jdic.jar

windows7-x64

1

lib/jdic.jar

windows10-2004-x64

1

lib/jdic_stub.jar

windows7-x64

1

lib/jdic_stub.jar

windows10-2004-x64

1

lib/looks-2.2.1.jar

windows7-x64

1

lib/looks-2.2.1.jar

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    3272f7fa4eba55b319082cbeda80cfc5_JaffaCakes118

  • Size

    2.6MB

  • MD5

    3272f7fa4eba55b319082cbeda80cfc5

  • SHA1

    800eb8545303f8f8555bbd00943e94a57a25dfa0

  • SHA256

    1a4a43ad60a9cf6b9e3fa216d8a3ecc8e1def33b7e422236c420fe282c9d0512

  • SHA512

    bf9cbf7bd55ddda13596a2d2f74c630b920e2cc48511bf2813f1b9891fd47970328dfb0aa25efdd1af1ab5ad0313d639da8d62bdb9c64e11077377cf20538ca4

  • SSDEEP

    49152:FDgyT0J00rAb2KfFwEYOqBtyvA/lVV8roBldJ+sNFuLtIZvdviK:FDgDuvTMHtycyEjJuINtr

Score
3/10

Malware Config

Signatures

  • Unsigned PE 9 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 3272f7fa4eba55b319082cbeda80cfc5_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • Charles.exe
    .exe windows:4 windows x86 arch:x86

    fa7410600210953e2853c5d99cb734d9


    Headers

    Imports

    Sections

  • Charles.ini
  • charles.ico
  • docs/charles-cert.txt
  • docs/charles.cer
  • extra/Run Charles.bat
  • lib/TrayIcon12.dll
    .dll windows:4 windows x86 arch:x86

    8fda480a75a215f9a3169eec8965099c


    Headers

    Imports

    Exports

    Sections

  • lib/activation.jar
    .jar
  • lib/bouncycastle.jar
    .jar
  • lib/charles.dll
    .dll windows:4 windows x86 arch:x86

    5fb532da18356644d48dda7d3ccfc3c3


    Headers

    Imports

    Exports

    Sections

  • lib/charles.jar
    .jar
  • lib/charles_win32.dll
    .dll windows:4 windows x86 arch:x86

    377e58ac71b01f758ad2ec98f364526c


    Headers

    Imports

    Exports

    Sections

  • lib/image4j.jar
    .jar
  • lib/jakarta-oro-2.0.8.jar
    .jar
  • lib/jdic.dll
    .dll windows:4 windows x86 arch:x86

    fc4c7d9bd749d58d970fedfd418f9ada


    Headers

    Imports

    Exports

    Sections

  • lib/jdic.jar
    .jar
  • lib/jdic_stub.jar
    .jar
  • lib/looks-2.2.1.jar
    .jar
  • lib/miglayout-3.6.2-swing-java14.jar
    .jar
  • lib/retroweaver-rt-2.0.7.jar
    .jar
  • uninstall.exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp