Overview

overview

7

Static

static

7

a54569c466...18.exe

windows7-x64

7

a54569c466...18.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ch.dll

windows7-x64

3

$PLUGINSDI...ch.dll

windows10-2004-x64

3

aview.html

windows7-x64

3

aview.html

windows10-2004-x64

3

htmlayout.dll

windows7-x64

7

htmlayout.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    a54569c466d9b2c99ce658a776b3f3eb_JaffaCakes118

  • Size

    9.4MB

  • MD5

    a54569c466d9b2c99ce658a776b3f3eb

  • SHA1

    bb47d5d5ccbcf3651fc673347756473257abbd78

  • SHA256

    43ed1b6faeb67d2b8262e87dc77f5858fedbf171c86ed38b76f2bb5e66ee691f

  • SHA512

    9d186eb6d43f50734b3276b6ae9781c08fc0b4b63f3f9269b6dd97c93ae5687da7d575fb8dba373b5a7c7bae6da25b8fbbebcffacbb1b7e01e9d52035989e57c

  • SSDEEP

    98304:e7aB5DSgM972IyZslTKac8nJmqq1SpCSrjr:wM5WgUVy4uazJmqq1uXr

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • a54569c466d9b2c99ce658a776b3f3eb_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/VPatch.dll
    .dll windows:4 windows x86 arch:x86

    308dbf2136b37be830bdd627b8ff3095


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/hozhka52.tmp.patchFile
  • $PLUGINSDIR/laskovo556.tmp.patchFile
  • $PLUGINSDIR/ruchka22.tmp.patchFile
  • MyriadWebPro-Condensed.ttf
  • after.png
    .png
  • aview
    .html
  • dir.png
    .png
  • dot.gif
    .gif
  • hozhka52
  • htmlayout.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • laskovo556
  • logo.png
    .png
  • logo2.png
    .png
  • ruchka22
  • rules.css
  • sb-h-scroll-next.png
    .png
  • sb-h-scroll-prev.png
    .png
  • sb-scroll-back.png
    .png
  • sb-scroll-base.png
    .png
  • sb-scroll-slider.png
    .png
  • sb-v-scroll-next.png
    .png
  • sb-v-scroll-prev.png
    .png
  • scroll.css