General

  • Target

    7761f40bcfff6a782bac4cc61da8566d_JaffaCakes118

  • Size

    779KB

  • MD5

    7761f40bcfff6a782bac4cc61da8566d

  • SHA1

    33dd966c0d3450380429c7e23271a66b2dbdbfba

  • SHA256

    da56f12da182713d581f19f39bb0e772aaf3c3c7d08b6d54c74fe1ada2ab8b17

  • SHA512

    2a27e5fa6d030b14fc1745c62f70894e49206b9cba53f656a642c85186ce24fe8572cb344b5f9318d06d1e81267958fdeb36558bff7d67f60f4e95a6f1f330ff

  • SSDEEP

    12288:8k1/SPZUByD2tnBJq9fD2tngV94Bea2AnNIQ8P/6LSHu1VSX4ZdjnpKzeF:pSPqBZtnBltngV94cW/2J4DjpFF

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 13 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 5 IoCs

Files

  • 7761f40bcfff6a782bac4cc61da8566d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    28a099a911237a28521d8b7ea250f089


    Headers

    Imports

    Sections

  • $TEMP/cmdinfo.exe
    .exe windows:4 windows x86 arch:x86

    7cc766686e859acf1481f837848d7c6a


    Headers

    Imports

    Sections

  • $TEMP/hosts
  • $TEMP/svchost.exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/NSISArray.dll
    .dll windows:5 windows x86 arch:x86

    8772d66326aa6d7b2a9d5c4b0a7afb36


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/blowfish.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    e886a412cdaf11998a8eeffda508e913


    Headers

    Imports

    Exports

    Sections

  • bfw.exe
    .exe windows:1 windows x86 arch:x86

    e4eef1be56d90d81d07974dd8dd3b1da


    Headers

    Imports

    Sections

  • cftmon.exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/NSISArray.dll
    .dll windows:5 windows x86 arch:x86

    8772d66326aa6d7b2a9d5c4b0a7afb36


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/blowfish.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    e886a412cdaf11998a8eeffda508e913


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/md5dll.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • setup05.cab