destroy
getWindow
show
General
-
Target
96dd11116c4f072553c47bf5a8fb18db_JaffaCakes118
-
Size
4.3MB
-
MD5
96dd11116c4f072553c47bf5a8fb18db
-
SHA1
9050569631af056734130f26e6d89612b4d4a652
-
SHA256
18d3ee5ecf45fc7d523089fbe3a942feff27e45fd0022b3cfd7a2d1c09a74cf1
-
SHA512
eed8a89f199b237750c31c5fc3f1c8f5191ea65810b4f25a179f0e5a4539fc4e1e6ccdbc0bb7aeb414c0357031a897df7ee6842995a544d438f270e91c624e46
-
SSDEEP
98304:Du6FDtPx+KO7kJv1ptkZS+FRrJgHbS/89yoevxpEuVRMJgTD0mPY:5FpJ+KO7kV1ptkZtf9/8revXE8RCgMKY
Score
7/10
Malware Config
Signatures
-
ASPack v2.12-2.42 2 IoCs
Detects executables packed with ASPack v2.12-2.42
-
Unsigned PE 18 IoCs
Checks for missing Authenticode signature.
-
NSIS installer 4 IoCs
Files
-
96dd11116c4f072553c47bf5a8fb18db_JaffaCakes118
-
wineim_6_Club.png
-
wineim_6_GroupFile.png
-
wineim_6_Login.png
-
wineim_6_MainForm.png
-
wineim_6_MessageForm.png
-
wineim_6_SendFiles.png
-
wineim_6_eDisk.png
-
wineim_6_setup.exe
099c0646ea7282d232219f8807883be0
Headers
Imports
Sections
-
$PLUGINSDIR/Banner.dll
b968ce326d1e1c2f8ef542ea565067f3
Headers
Imports
Exports
Sections
-
$PLUGINSDIR/InstallOptions.dll
57354bdeea3dfae6e948101add87501a
Headers
Imports
Exports
Sections
-
$PLUGINSDIR/Splash.dll
dfca8f6698c93c9475bec373d99a1efd
Headers
Imports
Exports
Sections
-
$PLUGINSDIR/System.dll
4ec328f99bdd944fc98d8a5cf11f7a62
Headers
Imports
Exports
Sections
-
$PLUGINSDIR/ioSpecial.ini
-
$PLUGINSDIR/modern-header.bmp
-
$PLUGINSDIR/modern-wizard.bmp
-
$PLUGINSDIR/splash.bmp
-
GdiPlus.dll
ef4c749f5dec4632456950949469f18c
Headers
Imports
Exports
Sections
-
Uninstall.exe
099c0646ea7282d232219f8807883be0
Headers
Imports
Sections
-
$PLUGINSDIR/InstallOptions.dll
57354bdeea3dfae6e948101add87501a
Headers
Imports
Exports
Sections
-
$PLUGINSDIR/ioSpecial.ini
-
$PLUGINSDIR/modern-header.bmp
-
$PLUGINSDIR/modern-wizard.bmp
-
bin/imhttp.dll
a7ed838a4ad23511fc04b6440bf843d4
Headers
Imports
Exports
Sections
-
bin/imie.dll
4d83ff03055c27c0fb86f0fa2175edac
Headers
Imports
Exports
Sections
-
bin/imload.exe
21a66b0f190240a630237d9af3a2d08b
Headers
Imports
Sections
-
bin/imres.dll
665c43281de15bf13d358276fead214f
Headers
Imports
Exports
Sections
-
bin/imswp.dll
81b56a30f24f6fe84a7dbbbbe7692d90
Headers
Imports
Exports
Sections
-
bin/imudp.dll
e1e4ab0fd56d4cfca5163b0fd1715a09
Headers
Imports
Exports
Sections
-
bin/imupdate.exe
981b098181f72870b9b34f8dae9ad918
Headers
Imports
Sections
-
bin/zlib1.dll
b9eae1e88fb6035d13bb2487ce9af57e
Headers
Imports
Exports
Sections
-
eimfocus.exe
Headers
Exports
Sections
-
i18n/1028/base.ini
-
i18n/1028/calendar.ini
-
i18n/2052/base.ini
-
i18n/2052/calendar.ini
-
license.rtf
-
misc/default/autorestore/restore01.txt
-
misc/default/autorestore/restore02.txt
-
misc/default/autorestore/restore03.txt
-
misc/default/autorestore/restore_font.ini
-
misc/default/baseconfig.ini
-
misc/default/defaultphoto.bmp
-
misc/default/file.ico
-
misc/default/listcolor.ini
-
misc/default/logo.bmp
-
misc/default/userlist.ini
-
misc/emotions/0.BMP
-
misc/emotions/0.gif
-
misc/emotions/1.BMP
-
misc/emotions/1.gif
-
misc/emotions/10.BMP
-
misc/emotions/10.gif
-
misc/emotions/11.BMP
-
misc/emotions/11.gif
-
misc/emotions/12.BMP
-
misc/emotions/12.gif
-
misc/emotions/13.BMP
-
misc/emotions/13.gif
-
misc/emotions/14.BMP
-
misc/emotions/14.gif
-
misc/emotions/15.BMP
-
misc/emotions/15.gif
-
misc/emotions/16.BMP
-
misc/emotions/16.gif
-
misc/emotions/17.BMP
-
misc/emotions/17.gif
-
misc/emotions/18.BMP
-
misc/emotions/18.gif
-
misc/emotions/19.BMP
-
misc/emotions/19.gif
-
misc/emotions/2.BMP
-
misc/emotions/2.gif
-
misc/emotions/20.BMP
-
misc/emotions/20.gif
-
misc/emotions/21.BMP
-
misc/emotions/21.gif
-
misc/emotions/22.BMP
-
misc/emotions/22.gif
-
misc/emotions/23.BMP
-
misc/emotions/23.gif
-
misc/emotions/24.BMP
-
misc/emotions/24.gif
-
misc/emotions/25.BMP
-
misc/emotions/25.gif
-
misc/emotions/26.BMP
-
misc/emotions/26.gif
-
misc/emotions/27.BMP
-
misc/emotions/27.gif
-
misc/emotions/28.BMP
-
misc/emotions/28.gif
-
misc/emotions/29.BMP
-
misc/emotions/29.gif
-
misc/emotions/3.BMP
-
misc/emotions/3.gif
-
misc/emotions/30.BMP
-
misc/emotions/30.gif
-
misc/emotions/31.BMP
-
misc/emotions/31.gif
-
misc/emotions/32.BMP
-
misc/emotions/32.gif
-
misc/emotions/33.BMP
-
misc/emotions/33.gif
-
misc/emotions/34.BMP
-
misc/emotions/34.gif
-
misc/emotions/35.BMP
-
misc/emotions/35.gif
-
misc/emotions/36.BMP
-
misc/emotions/36.gif
-
misc/emotions/37.BMP
-
misc/emotions/37.gif
-
misc/emotions/38.BMP
-
misc/emotions/38.gif
-
misc/emotions/39.BMP
-
misc/emotions/39.gif
-
misc/emotions/4.BMP
-
misc/emotions/4.gif
-
misc/emotions/40.BMP
-
misc/emotions/40.gif
-
misc/emotions/41.BMP
-
misc/emotions/41.gif
-
misc/emotions/42.BMP
-
misc/emotions/42.gif
-
misc/emotions/43.BMP
-
misc/emotions/43.gif
-
misc/emotions/44.BMP
-
misc/emotions/44.gif
-
misc/emotions/45.BMP
-
misc/emotions/45.gif
-
misc/emotions/46.BMP
-
misc/emotions/46.gif
-
misc/emotions/47.BMP
-
misc/emotions/47.gif
-
misc/emotions/48.BMP
-
misc/emotions/48.gif
-
misc/emotions/49.BMP
-
misc/emotions/49.gif
-
misc/emotions/5.BMP
-
misc/emotions/5.gif
-
misc/emotions/50.BMP
-
misc/emotions/50.gif
-
misc/emotions/51.BMP
-
misc/emotions/51.gif
-
misc/emotions/52.BMP
-
misc/emotions/52.gif
-
misc/emotions/53.BMP
-
misc/emotions/53.gif
-
misc/emotions/54.BMP
-
misc/emotions/54.gif
-
misc/emotions/55.BMP
-
misc/emotions/55.gif
-
misc/emotions/56.BMP
-
misc/emotions/56.gif
-
misc/emotions/57.BMP
-
misc/emotions/57.gif
-
misc/emotions/58.BMP
-
misc/emotions/58.gif
-
misc/emotions/59.BMP
-
misc/emotions/59.gif
-
misc/emotions/6.BMP
-
misc/emotions/6.gif
-
misc/emotions/60.BMP
-
misc/emotions/60.gif
-
misc/emotions/61.BMP
-
misc/emotions/61.gif
-
misc/emotions/62.BMP
-
misc/emotions/62.gif
-
misc/emotions/63.BMP
-
misc/emotions/63.gif
-
misc/emotions/64.BMP
-
misc/emotions/64.gif
-
misc/emotions/65.BMP
-
misc/emotions/65.gif
-
misc/emotions/66.BMP
-
misc/emotions/66.gif
-
misc/emotions/67.BMP
-
misc/emotions/67.gif
-
misc/emotions/68.BMP
-
misc/emotions/68.gif
-
misc/emotions/69.BMP
-
misc/emotions/69.gif
-
misc/emotions/7.BMP
-
misc/emotions/7.gif
-
misc/emotions/70.BMP
-
misc/emotions/70.gif
-
misc/emotions/71.BMP
-
misc/emotions/71.gif
-
misc/emotions/72.BMP
-
misc/emotions/72.gif
-
misc/emotions/73.BMP
-
misc/emotions/73.gif
-
misc/emotions/74.BMP
-
misc/emotions/74.gif
-
misc/emotions/75.BMP
-
misc/emotions/75.gif
-
misc/emotions/76.BMP
-
misc/emotions/76.gif
-
misc/emotions/77.BMP
-
misc/emotions/77.gif
-
misc/emotions/78.BMP
-
misc/emotions/78.gif
-
misc/emotions/79.BMP
-
misc/emotions/79.gif
-
misc/emotions/8.BMP
-
misc/emotions/8.gif
-
misc/emotions/80.BMP
-
misc/emotions/80.gif
-
misc/emotions/81.BMP
-
misc/emotions/81.gif
-
misc/emotions/82.BMP
-
misc/emotions/82.gif
-
misc/emotions/83.BMP
-
misc/emotions/83.gif
-
misc/emotions/84.BMP
-
misc/emotions/84.gif
-
misc/emotions/85.BMP
-
misc/emotions/85.gif
-
misc/emotions/86.BMP
-
misc/emotions/86.gif
-
misc/emotions/87.BMP
-
misc/emotions/87.gif
-
misc/emotions/88.BMP
-
misc/emotions/88.gif
-
misc/emotions/89.BMP
-
misc/emotions/89.gif
-
misc/emotions/9.BMP
-
misc/emotions/9.gif
-
misc/emotions/90.BMP
-
misc/emotions/90.gif
-
misc/emotions/91.BMP
-
misc/emotions/91.gif
-
misc/emotions/92.BMP
-
misc/emotions/92.gif
-
misc/emotions/93.BMP
-
misc/emotions/93.gif
-
misc/emotions/94.BMP
-
misc/emotions/94.gif
-
misc/emotions/95.bmp
-
misc/emotions/95.gif
-
misc/emotions/96.gif
-
misc/emotions/emotions.ini
-
misc/photo/sample1.png
-
misc/photo/sample10.gif
-
misc/photo/sample11.gif
-
misc/photo/sample12.gif
-
misc/photo/sample2.png
-
misc/photo/sample3.png
-
misc/photo/sample4.png
-
misc/photo/sample5.png
-
misc/photo/sample6.png
-
misc/photo/sample8.gif
-
misc/photo/sample9.gif
-
misc/sound/broadcast.wav
-
misc/sound/file.wav
-
misc/sound/msg.wav
-
misc/sound/online.wav
-
misc/sound/ring.wav
-
themes/default/bitmap/butimage.bmp
-
themes/default/bitmap/capturefrmtopbg.bmp
-
themes/default/bitmap/cardformbg.bmp
-
themes/default/bitmap/channel_icon_club.bmp
-
themes/default/bitmap/channel_icon_edisk.bmp
-
themes/default/bitmap/channel_icon_lastuser.bmp
-
themes/default/bitmap/channel_icon_userlist.bmp
-
themes/default/bitmap/checkbox.bmp
-
themes/default/bitmap/commonicon.bmp
-
themes/default/bitmap/emotion_border.bmp
-
themes/default/bitmap/formbase.bmp
-
themes/default/bitmap/formbg.bmp
-
themes/default/bitmap/formtitlebut.bmp
-
themes/default/bitmap/frombg.bmp
-
themes/default/bitmap/getfilefrm.bmp
-
themes/default/bitmap/historyfrm.bmp
-
themes/default/bitmap/infoformtl.bmp
-
themes/default/bitmap/lblinfofrmslp.bmp
-
themes/default/bitmap/lbllogonbg1.bmp
-
themes/default/bitmap/lbllogonbg2.bmp
-
themes/default/bitmap/loginstate_1.bmp
-
themes/default/bitmap/loginstate_2.bmp
-
themes/default/bitmap/loginstate_3.bmp
-
themes/default/bitmap/loginstate_4.bmp
-
themes/default/bitmap/logonfrmtooltipbg.bmp
-
themes/default/bitmap/mainpbxbut.bmp
-
themes/default/bitmap/messageform.bmp
-
themes/default/bitmap/mmu_icon.bmp
-
themes/default/bitmap/mmu_icon_mask.bmp
-
themes/default/bitmap/msg_progress.bmp
-
themes/default/bitmap/msgtoolbarbut.bmp
-
themes/default/bitmap/optionfrmbar.BMP
-
themes/default/bitmap/pageturning.bmp
-
themes/default/bitmap/pensizeformbg.BMP
-
themes/default/bitmap/photo_border.bmp
-
themes/default/bitmap/select_color.bmp
-
themes/default/bitmap/select_color_bg.bmp
-
themes/default/bitmap/select_shape_bg.BMP
-
themes/default/bitmap/selectphoto.bmp
-
themes/default/bitmap/showupdown.bmp
-
themes/default/bitmap/smallinfoform.bmp
-
themes/default/bitmap/stateicon.bmp
-
themes/default/bitmap/sysmsgform.bmp
-
themes/default/bitmap/tb_club.bmp
-
themes/default/bitmap/tb_group.bmp
-
themes/default/bitmap/tb_sendfile.bmp
-
themes/default/bitmap/tb_sendfile_down.bmp
-
themes/default/bitmap/toolbarbut.bmp
-
themes/default/bitmap/tooltipform.BMP
-
themes/default/icon/bd.ico
-
themes/default/icon/club.ico
-
themes/default/icon/msg.ico
-
themes/default/imlist/scrollbar.bmp
-
themes/default/skin.ini
-
themes/default/transfer/cancel.bmp
-
themes/default/transfer/offfile.bmp
-
themes/default/transfer/recv.bmp
-
themes/default/transfer/reject.bmp
-
themes/default/transfer/saveas.bmp
-
users/setting.ini
-
users/userlist.ini
-
whatsnew.txt
-
wineim.exe
Headers
Exports
Sections
-
新云软件.url