General

  • Target

    397dc2ab8a412074047b042b63c5ec90_JaffaCakes118

  • Size

    1.8MB

  • MD5

    397dc2ab8a412074047b042b63c5ec90

  • SHA1

    7675f2afdd690d236762bcdc11230ce3861dccf5

  • SHA256

    0af69e865bbdfe7fb3a9ecefdedb27146ab5f304fd653661f9cdc9d29a9a43b9

  • SHA512

    3583ae3221027bdf576ed3fe26f3a1c46c02a9ac3d62dfc628a28526108ab773fcafcfe73499a7d9ebd45526086f2d091787bc13e293b76efe46d2770f7eb28d

  • SSDEEP

    49152:0go1wrWO+Kzb7RX3/mIo1C6ROyvGoi+GFV1braz624OPaBjLkKB30u:0ZyR+mRX3/mIGp6Vl2vPaB0KVf

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 11 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs

Files

  • 397dc2ab8a412074047b042b63c5ec90_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    1433f2e02f7db60c6c8547c52a3f8504


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    922b855d216a21490e4bcbf6c29b7f7d


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/StartMenu.dll
    .dll windows:4 windows x86 arch:x86

    7d85f9c30f9e87a65fff848de2c96ac1


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/reboot.ini
  • $SYSDIR/Drivers/USBSTFI.sys
    .sys windows:5 windows x86 arch:x86

    d8145dd2e1c597429c68d2d4f17b339d


    Headers

    Imports

    Sections

  • $TEMP/localsetup38.exe
    .exe windows:4 windows x86 arch:x86

    86057e03f22e7f492f3fdd45c4a17706


    Headers

    Imports

    Sections

  • $TEMP/softreg1.EXE
    .exe windows:5 windows x86 arch:x86

    c56a25fa4336eeb10723b3537ba4876d


    Headers

    Imports

    Sections

  • $TEMP/softreg38.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • Readme.txt
  • USB Storage Security Expert.chm
    .chm
  • USBȫ洢ר(USSE).exe
    .exe windows:4 windows x86 arch:x86

    e05cb07209de6214978c4099e2200c09


    Headers

    Imports

    Sections

  • WinIo.dll
    .dll windows:4 windows x86 arch:x86

    b9b2bee901bb36181f387e1e336faa1f


    Headers

    Imports

    Exports

    Sections

  • WinIo.sys
    .sys windows:4 windows x86 arch:x86

    172b54da983eaa27abf08d8ed525b840


    Headers

    Imports

    Sections

  • option