Overview

overview

7

Static

static

3

89d6f326af...18.exe

windows7-x64

7

89d6f326af...18.exe

windows10-2004-x64

7

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

$PLUGINSDIR/xml.dll

windows7-x64

3

$PLUGINSDIR/xml.dll

windows10-2004-x64

3

htm2mht-cmd.bat

windows7-x64

1

htm2mht-cmd.bat

windows10-2004-x64

1

htm2mht.chm

windows7-x64

1

htm2mht.chm

windows10-2004-x64

1

htm2mht.exe

windows7-x64

3

htm2mht.exe

windows10-2004-x64

3

uninstall.exe

windows7-x64

7

uninstall.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...gs.dll

windows7-x64

3

$PLUGINSDI...gs.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    89d6f326af900c32a5dfa0236daf0c8d_JaffaCakes118

  • Size

    627KB

  • MD5

    89d6f326af900c32a5dfa0236daf0c8d

  • SHA1

    29c1fa5331adc27bdf2c972847d2208a530b4e2c

  • SHA256

    3b6027f55f78982229d8bfed07b2b1eaeff3d09a1a3a7bcb9bca23bc6973231c

  • SHA512

    4e1018ab07006b8a399f77d750d61c33027320b95fa725072cf1cb4d42c79f97ffc18fca098cc680951824bebc699f42beb255ab6ba56f7f10f7844cfc840541

  • SSDEEP

    12288:b9FWr+zieuhtQ05Xphrp8J4ySgtpV1xX3NbEtshEH5:b9FWazUM05Xph8tpV11NgtsuZ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 10 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 4 IoCs
    installer

Files

  • 89d6f326af900c32a5dfa0236daf0c8d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/Banner.dll
    .dll windows:4 windows x86 arch:x86

    7a3709b093081d5614be1eaa2fe7fe76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/inetc.dll
    .dll windows:4 windows x86 arch:x86

    5bdcdde5acd7b395f3f3d19ebbb8c6cd


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    1e2884056e655f2b7bc5a904e352fc80


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/xml.dll
    .dll windows:4 windows x86 arch:x86

    b5ed5b3a951d4443ce56e5453702d536


    Headers

    Imports

    Exports

    Sections

  • EULA.txt
  • htm2mht-cmd.bat
  • htm2mht.chm
    .chm
  • htm2mht.exe
    .exe windows:4 windows x86 arch:x86

    97b0879074c711e5b33aeaa84495c402


    Headers

    Imports

    Sections

  • readme.txt
  • uninstall.exe
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    1e2884056e655f2b7bc5a904e352fc80


    Headers

    Imports

    Exports

    Sections