Overview

overview

3

Static

static

3

37a44b1be8...18.exe

windows7-x64

3

37a44b1be8...18.exe

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

CrashReport.exe

windows7-x64

1

CrashReport.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    37a44b1be845f34f8ba0dab2e6408e91_JaffaCakes118

  • Size

    216KB

  • MD5

    37a44b1be845f34f8ba0dab2e6408e91

  • SHA1

    0bc375bb3d1440ed92ca4485212b954cd90225ee

  • SHA256

    cd55fcda2b7278d71f3d59ab7ec29e8e380b5433829c03423aa1ce31816b01ee

  • SHA512

    a3891dc57c01a587d09062093c17c5e06423794cc6df281bed55041966974c54b27b8613b8b283fc98c6635422c3c9306c5be3408db85f7acb76f41a8b3c559e

  • SSDEEP

    6144:wWwMnudWbheydzU2zZfJJJ7VNlaTLIKyn4tOS:tuwR22xJJJ5NlSy4tJ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs
    installer

Files

  • 37a44b1be845f34f8ba0dab2e6408e91_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    237a51742fed62d237b6f1b75452402f


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstPath.ini
  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    57354bdeea3dfae6e948101add87501a


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    4ec328f99bdd944fc98d8a5cf11f7a62


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/WelcomePage.ini
  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • $TEMP/installpathcn.bmp
  • $TEMP/installpathen.bmp
  • $TEMP/instpath.ini
  • $TEMP/partner.ini
  • $TEMP/welcomepage.ini
  • CrashReport.exe
    .exe windows:4 windows x86 arch:x86

    8bca52273b45caff2bb4e2747f2262a1


    Headers

    Imports

    Sections