Overview

overview

7

Static

static

3

a67036f999...18.exe

windows7-x64

7

a67036f999...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$SYSDIR/Li...ps.scr

windows7-x64

3

$SYSDIR/Li...ps.scr

windows10-2004-x64

3

Scenes/uninstall.exe

windows7-x64

7

Scenes/uninstall.exe

windows10-2004-x64

7

help.htm

windows7-x64

3

help.htm

windows10-2004-x64

3

ldstart.exe

windows7-x64

1

ldstart.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    a67036f9995693bacd068df52f8b2d8c_JaffaCakes118

  • Size

    1.6MB

  • MD5

    a67036f9995693bacd068df52f8b2d8c

  • SHA1

    f22160287a9120360a3f134115f397fd1605c4d3

  • SHA256

    d0fb6b695f1b8420b689a08351a063c63acc1e985c6eeba86d5999770a438a4a

  • SHA512

    820c08c964de16b820a0cda2a576ef1dd102060aa7a21de9b9c67471f138421c72f097647549ed886ae8970e9736d4016958fb475fa587464c070430b021da0b

  • SSDEEP

    49152:i39Tf5iGzNw05nxI6OJebIBmUlNta/3CG1ekYm2:S9Tf1Jw05xIg0+3tekYm2

Score
3/10

Malware Config

Signatures

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • a67036f9995693bacd068df52f8b2d8c_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    18b26e3ef7317852fa83fde4ebd910ac


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    57354bdeea3dfae6e948101add87501a


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $SYSDIR/Living Desktops.scr
    .exe windows:4 windows x86 arch:x86

    f433e7fcc51e68080022754836705744


    Headers

    Imports

    Sections

  • Scenes/MountainLake.dat
    .zip
  • MountainLake1.txt
  • MountainLake2.txt
  • MountainLake3.txt
  • MountainLake4.txt
  • MountainLake5.txt
  • Thumbs.db
  • bumpmap1.jpg
    .jpg
  • bumpmap2.jpg
    .jpg
  • bumpmap3.jpg
    .jpg
  • icon.bmp
  • ld1_background.jpg
    .jpg
  • ld1_mask.jpg
    .jpg
  • ld1_plane.jpg
    .jpg
  • ld2_background.jpg
    .jpg
  • ld2_mask.jpg
    .jpg
  • ld2_plane.jpg
    .jpg
  • ld3_background.jpg
    .jpg
  • ld3_mask.jpg
    .jpg
  • ld3_plane.jpg
    .jpg
  • ld4_background.jpg
    .jpg
  • ld4_mask.jpg
    .jpg
  • ld4_plane.jpg
    .jpg
  • ld4_plane_backup.jpg
    .jpg
  • ld5_background.jpg
    .jpg
  • ld5_mask.jpg
    .jpg
  • ld5_plane.jpg
    .jpg
  • mask.bmp
  • preview.bmp
  • scene.txt
  • Scenes/uninstall.exe
    .exe windows:4 windows x86 arch:x86

    18b26e3ef7317852fa83fde4ebd910ac


    Headers

    Imports

    Sections

  • $PLUGINSDIR/modern-header.bmp
  • banner.jpg
    .jpg
  • help.htm
    .html
  • ldstart.exe
    .exe windows:4 windows x86 arch:x86

    03b9bca907f0718391db6b97f12a032e


    Headers

    Imports

    Sections