Overview

overview

7

Static

static

7

8d929484a6...18.exe

windows7-x64

7

8d929484a6...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$R0.dll

windows7-x64

3

$R0.dll

windows10-2004-x64

3

$R2/NSIS.L...4_.exe

windows7-x64

1

$R2/NSIS.L...4_.exe

windows10-2004-x64

3

$SYSDIR/MACDll.dll

windows7-x64

3

$SYSDIR/MACDll.dll

windows10-2004-x64

3

$SYSDIR/lame_enc.dll

windows7-x64

3

$SYSDIR/lame_enc.dll

windows10-2004-x64

3

$SYSDIR/li...le.dll

windows7-x64

7

$SYSDIR/li...le.dll

windows10-2004-x64

7

$SYSDIR/ogg.dll

windows7-x64

7

$SYSDIR/ogg.dll

windows10-2004-x64

7

$SYSDIR/vorbis.dll

windows7-x64

7

$SYSDIR/vorbis.dll

windows10-2004-x64

7

$SYSDIR/vo...le.dll

windows7-x64

7

$SYSDIR/vo...le.dll

windows10-2004-x64

7

bin/MACDll.dll

windows7-x64

3

bin/MACDll.dll

windows10-2004-x64

3

bin/lame_enc.dll

windows7-x64

3

bin/lame_enc.dll

windows10-2004-x64

3

bin/libsndfile.dll

windows7-x64

7

bin/libsndfile.dll

windows10-2004-x64

7

bin/ogg.dll

windows7-x64

7

bin/ogg.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    8d929484a65eb436c557a3019f1cc03e_JaffaCakes118

  • Size

    2.3MB

  • MD5

    8d929484a65eb436c557a3019f1cc03e

  • SHA1

    d0baee7a5bc7cf8d8a73a0bf15f6715d43d65c5a

  • SHA256

    fec20d750ec5d6a2a1d60b036ebf44db0d4eda7d7c623f7c30b98d885a918cdb

  • SHA512

    ab4b9d411a8a1d1d042029e30de7ad4c58d476f56b57306e05e3ef4e4f55ef0c36ab4d3139309a5a5814ecdd564dcdab84e6c7defead2d6d2a0a438ec2062288

  • SSDEEP

    49152:NBnBOTBEiCjOlI+tN9B7ndw2yIYJQcGRbGevqPlnE6ImxS:NBnBKdlI0Pnw2yIQBIbGevsxS

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 8 IoCs

    Detects file using ACProtect software.

  • UPX packed file 8 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 26 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • 8d929484a65eb436c557a3019f1cc03e_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:4 windows x86 arch:x86

    9b6b6a7858e17fb0b17e1c1428330343


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • $R0
    .dll regsvr32 windows:4 windows x86 arch:x86

    3708bef5cd6e5fb503b4de6477d1b421


    Headers

    Imports

    Exports

    Sections

  • $R2/NSIS.Library.RegTool.v3.$_4_.exe
    .exe windows:4 windows x86 arch:x86

    a56a9c58ddb2b2da8fde66551747ce70


    Headers

    Imports

    Sections

  • $SYSDIR/MACDll.dll
    .dll windows:4 windows x86 arch:x86

    e2c74ffadae0d70ecf4b14291e53bc3e


    Headers

    Imports

    Exports

    Sections

  • $SYSDIR/lame_enc.dll
    .dll windows:4 windows x86 arch:x86

    fa173586a4b0eb0918ead3f1c5015cc2


    Headers

    Imports

    Exports

    Sections

  • $SYSDIR/libsndfile.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • $SYSDIR/ogg.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • $SYSDIR/vorbis.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • $SYSDIR/vorbisfile.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • bin/COPYING.LGPL
  • bin/MACDll.dll
    .dll windows:4 windows x86 arch:x86

    e2c74ffadae0d70ecf4b14291e53bc3e


    Headers

    Imports

    Exports

    Sections

  • bin/lame_enc.dll
    .dll windows:4 windows x86 arch:x86

    fa173586a4b0eb0918ead3f1c5015cc2


    Headers

    Imports

    Exports

    Sections

  • bin/libsndfile.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • bin/ogg.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • bin/readme.txt
  • bin/vorbis.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • bin/vorbisfile.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections