Overview

overview

7

Static

static

3

3a625b4034...18.exe

windows7-x64

7

3a625b4034...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$TEMP/bdtm...ll.dll

windows7-x64

1

$TEMP/bdtm...ll.dll

windows10-2004-x64

3

baidubar.dll

windows7-x64

7

baidubar.dll

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3a625b403453efd630bec54b1c0938e7_JaffaCakes118

  • Size

    593KB

  • MD5

    3a625b403453efd630bec54b1c0938e7

  • SHA1

    f287035aaecfdafe72f310178d5f2e26e73a37d2

  • SHA256

    59eb89f1ba93209eddbb1c102cc273cce5efe6cd58b0adf43c4fd23ac556b933

  • SHA512

    5ad2f2be94c7b8e33d60aee10b7a325d38d78fed2c7a54a9f6cdad0c77684102ab968da1f839bf0cea5c3730724d36022f1653c23facd211ee4fa4e08866687f

  • SSDEEP

    12288:iUw01kNk1U6yQUe/B1LExlXmbKpjU3fYJy6qouBLmY8c2IqH:iUw5kq6yu6VjpjUPn4d3

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs
    installer

Files

  • 3a625b403453efd630bec54b1c0938e7_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    1bed3305885b0ca596d9cbba22baf78a


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    9d433976e02d79532f0d635ee81d0b20


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    4ec328f99bdd944fc98d8a5cf11f7a62


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • $PROGRAM_FILES/Baidu/bar/Buttons/custom.xml
    .xml
  • $TEMP/bdtmp/InstDll.dll
    .dll windows:4 windows x86 arch:x86

    e44f82ce77eec687f2bd1fd452dd3940


    Headers

    Imports

    Exports

    Sections

  • BaiduBar.dat
  • baidubar.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    55028093f8bd5816ead60fd512d82d8b


    Headers

    Imports

    Exports

    Sections

  • img/imglist.bmp
  • img/logo.bmp