General

  • Target

    4ae6aa15892207c7e6323c9101c9a900_JaffaCakes118

  • Size

    8.9MB

  • MD5

    4ae6aa15892207c7e6323c9101c9a900

  • SHA1

    513419ca2ba6531930e117d31833d39702121c27

  • SHA256

    43dd818938f2a189ae43dcaffa558ad39d518aa60ac096f0cdc0f1c35677a249

  • SHA512

    fbe7b4c1ae48d22f3b8a942127276a4cd1013d56880d8cea0acf6c584e5bb49054e9c948774d6debd29e8e03eedd753e84a0cb994534330a0aa03da38cc37ab4

  • SSDEEP

    196608:dOxdnAHBH4QeK+UKoWSJplr0G9qj4YVemKLttARTzXcJ:d8V3QgloWSjlrZkcYVzKzsTzsJ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 26 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • 4ae6aa15892207c7e6323c9101c9a900_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/Download_Energy.exe
    .exe windows:4 windows x86 arch:x86

    81638d02019c0bfcaaf23a9c69f2f12c


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/p2p-toolbar-screenshot.bmp
  • $PLUGINSDIR/setup.ini
  • $PLUGINSDIR/vcredist_x86.exe
    .exe windows:5 windows x86 arch:x86

    c63ba316533609531fac22f3877f847b


    Code Sign

    Headers

    Imports

    Sections

  • Icons/proto_AIM.dll
    .dll windows:5 windows x86 arch:x86

    e7967d1240522f4789dba9fde77d3d82


    Headers

    Imports

    Sections

  • Icons/proto_ICQ.dll
    .dll windows:5 windows x86 arch:x86

    e7967d1240522f4789dba9fde77d3d82


    Headers

    Imports

    Sections

  • Icons/proto_IRC.dll
    .dll windows:5 windows x86 arch:x86

    e7967d1240522f4789dba9fde77d3d82


    Headers

    Imports

    Sections

  • Icons/proto_MSN.dll
    .dll windows:5 windows x86 arch:x86

    e7967d1240522f4789dba9fde77d3d82


    Headers

    Imports

    Sections

  • Icons/proto_YAHOO.dll
    .dll windows:5 windows x86 arch:x86

    e7967d1240522f4789dba9fde77d3d82


    Headers

    Imports

    Sections

  • One Instant Messenger.exe
    .exe windows:5 windows x86 arch:x86

    f5520a4e348c45774413a20194c00bf9


    Headers

    Imports

    Sections

  • dbtool.exe
    .exe windows:5 windows x86 arch:x86

    1970e3acf3c5e603ea9fe1346b63655d


    Headers

    Imports

    Sections

  • plugins/GG.dll
    .dll windows:5 windows x86 arch:x86

    f8dcde15696ff59245a4c766977ed131


    Headers

    Imports

    Exports

    Sections

  • plugins/IRC.dll
    .dll windows:5 windows x86 arch:x86

    9235e802fccbb12ef4d11903e96d8db4


    Headers

    Imports

    Exports

    Sections

  • plugins/Yahoo.dll
    .dll windows:5 windows x86 arch:x86

    3d99fbc57e42993c781749e6208823f8


    Headers

    Imports

    Exports

    Sections

  • plugins/advaimg.dll
    .dll windows:5 windows x86 arch:x86

    f74180a60ac3a0783a0a1a3702afa567


    Headers

    Imports

    Exports

    Sections

  • plugins/aim.dll
    .dll windows:5 windows x86 arch:x86

    92e9a1bb7514b08aede43c14ce5fcd39


    Headers

    Imports

    Exports

    Sections

  • plugins/avs.dll
    .dll windows:5 windows x86 arch:x86

    f146eccf30fedf2c0dfb55368ab96941


    Headers

    Imports

    Exports

    Sections

  • plugins/chat.dll
    .dll windows:5 windows x86 arch:x86

    b8d5ab2460e8d00f2125435688d39350


    Headers

    Imports

    Exports

    Sections

  • plugins/clist_classic.dll
    .dll windows:5 windows x86 arch:x86

    ece0c0162d7dfe1ff3a4b0986f588330


    Headers

    Imports

    Exports

    Sections

  • plugins/dbx_3x.dll
    .dll windows:5 windows x86 arch:x86

    46b0db9630cbbe65536bfa12d983e222


    Headers

    Imports

    Exports

    Sections

  • plugins/dbx_mmap.dll
    .dll windows:5 windows x86 arch:x86

    d64a7d4843f447c0eee8edeb55b566d5


    Headers

    Imports

    Exports

    Sections

  • plugins/icq.dll
    .dll windows:5 windows x86 arch:x86

    8ca130dc4fd8d379f4bf79536c0e650c


    Headers

    Imports

    Exports

    Sections

  • plugins/import.dll
    .dll windows:5 windows x86 arch:x86

    711f0c47535d4c39684a9d6746ad3dce


    Headers

    Imports

    Exports

    Sections

  • plugins/jabber.dll
    .dll windows:5 windows x86 arch:x86

    5ac732815c5533ca8b21d56488385f65


    Headers

    Imports

    Exports

    Sections

  • plugins/msn.dll
    .dll windows:5 windows x86 arch:x86

    da7624c8abecdf847b9ac11a08a80e64


    Headers

    Imports

    Exports

    Sections

  • plugins/proto_JABBER.dll
    .dll windows:5 windows x86 arch:x86

    e7967d1240522f4789dba9fde77d3d82


    Headers

    Imports

    Sections

  • plugins/srmm.dll
    .dll windows:5 windows x86 arch:x86

    d2c8e0abbf1dc1adc53e339337b198d5


    Headers

    Imports

    Exports

    Sections

  • uninstall.exe.nsis
  • zlib.dll
    .dll windows:5 windows x86 arch:x86

    4359fa3c9371fe0542ca9982f8d3b966


    Headers

    Imports

    Exports

    Sections