General

  • Target

    62ad391659fede837fafede65a94cc79_JaffaCakes118

  • Size

    154KB

  • MD5

    62ad391659fede837fafede65a94cc79

  • SHA1

    a8b129d0ab19a5ce890f1a9275275881f5e471fb

  • SHA256

    cbc055af0783b5a0a8d01f763e35cea7290180ac743ddb5885024a59dea08ed0

  • SHA512

    b941a935f66a8a203d4d559a996d6c943b6650568bd52f0100017f6da2ca364a1c2d4d6a63c211fe153e687edbf7f09ffc2db69f1dae7a1561b4e77a5efb5ccf

  • SSDEEP

    3072:S22ihA0m3BJP0APIRXQT149nwCAVq7COnci5CpazaFLOtN1:NA0m3D0APIRXQT149nwCI3OnzHz0LOtX

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs

Files

  • 62ad391659fede837fafede65a94cc79_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    28a099a911237a28521d8b7ea250f089


    Code Sign

    Headers

    Imports

    Sections

  • $TEMP/BetterInstaller.exe
    .exe windows:5 windows x86 arch:x86

    a4c55d31aae4cee4e230a48344d6a88b


    Headers

    Imports

    Sections

  • $TEMP/config.ini