Overview

overview

7

Static

static

3

889b9e7dbf...18.exe

windows7-x64

7

889b9e7dbf...18.exe

windows10-2004-x64

7

$PLUGINSDI...os.dll

windows7-x64

3

$PLUGINSDI...os.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDI...os.dll

windows7-x64

3

$PLUGINSDI...os.dll

windows10-2004-x64

3

$TEMP/HssI...er.exe

windows7-x64

3

$TEMP/HssI...er.exe

windows10-2004-x64

3

$TEMP/tapinstall.exe

windows7-x64

1

$TEMP/tapinstall.exe

windows10-2004-x64

1

HssWPR/Hss...er.exe

windows7-x64

3

HssWPR/Hss...er.exe

windows10-2004-x64

bin/HssInstaller.exe

windows7-x64

3

bin/HssInstaller.exe

windows10-2004-x64

3

bin/tapinstall.exe

windows7-x64

1

bin/tapinstall.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    889b9e7dbf2121d3dc41eb03f77b5ea7_JaffaCakes118

  • Size

    6.0MB

  • MD5

    889b9e7dbf2121d3dc41eb03f77b5ea7

  • SHA1

    7978be494847f0ca30e5af0d3205ee8eea894672

  • SHA256

    3e6f3a629d52c12a965edce264f837d67cd3696a7ef909736fb5cb14aa5ffde6

  • SHA512

    6d44ffa714e7c1150667632abab71cfe1a07039514ea7f3b8eda9cb668cbb2e3e07a555a4aec77531235aefc2bf2f11818112b81cd7592e3b516938e77acf43a

  • SSDEEP

    98304:yWbjqMsxfppWw0ZRWobB593vQgUMuz2d3lvNyd7bCoEOn8xQySdkow8nlRHa9Xy5:yoGMYfTWXjB33vQgUMW2TNW7bRnpySPz

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

Files

  • 889b9e7dbf2121d3dc41eb03f77b5ea7_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    bf95d1fc1d10de18b32654b123ad5e1f


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/ExecDos.dll
    .dll windows:5 windows x86 arch:x86

    80ebe2c612a758bd66058fcb4454ddbd


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:5 windows x86 arch:x86

    6c41c5e4d44f55745b925cc4e42b7fab


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UserInfo.dll
    .dll windows:5 windows x86 arch:x86

    45d25ca52c312b2254c60dbcb30342d1


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/nsisos.dll
    .dll windows:5 windows x86 arch:x86

    39fe72cb36dbf0e6f6e7f1d12a53c7a9


    Headers

    Imports

    Exports

    Sections

  • $TEMP/HssInstaller.exe
    .exe windows:5 windows x86 arch:x86

    64b1e74e9705b2ba77ae128c72291176


    Code Sign

    Headers

    Imports

    Sections

  • $TEMP/tapinstall.exe
    .exe windows:6 windows x64 arch:x64

    1354d66e3116f4a24255915dc97a0cdf


    Code Sign

    Headers

    Imports

    Sections

  • HssWPR/HssInstaller.exe
    .exe windows:5 windows x86 arch:x86

    64b1e74e9705b2ba77ae128c72291176


    Code Sign

    Headers

    Imports

    Sections

  • bin/HssInstaller.exe
    .exe windows:5 windows x86 arch:x86

    64b1e74e9705b2ba77ae128c72291176


    Code Sign

    Headers

    Imports

    Sections

  • bin/tapinstall.exe
    .exe windows:6 windows x64 arch:x64

    1354d66e3116f4a24255915dc97a0cdf


    Code Sign

    Headers

    Imports

    Sections