Overview

overview

8

Static

static

7

b33e75eee0...18.exe

windows7-x64

8

b33e75eee0...18.exe

windows10-2004-x64

8

$PLUGINSDI...sh.dll

windows7-x64

3

$PLUGINSDI...sh.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$TEMP/inst..._x.exe

windows7-x64

8

$TEMP/inst..._x.exe

windows10-2004-x64

8

$PLUGINSDI...ay.dll

windows7-x64

3

$PLUGINSDI...ay.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...fo.dll

windows7-x64

3

$PLUGINSDI...fo.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

Flash9e.dll

windows7-x64

3

Flash9e.dll

windows10-2004-x64

3

FlashUtil9e.exe

windows7-x64

3

FlashUtil9e.exe

windows10-2004-x64

3

BlinkxBroadbandTV.exe

windows7-x64

7

BlinkxBroadbandTV.exe

windows10-2004-x64

7

uninstall.exe

windows7-x64

7

uninstall.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b33e75eee001379c213f4b9a80863791_JaffaCakes118

  • Size

    1.8MB

  • MD5

    b33e75eee001379c213f4b9a80863791

  • SHA1

    b8e7e5be463293023b141ee13fd2a73c3c224731

  • SHA256

    c49f0320eeab8dd644ba344a2039b4de48a26ef77c05eb069721477f0cd182ba

  • SHA512

    dc6c532fbf796704c4e53d4db775b2e7b33a6189ce157878fbef558a19346ec0d95beb927a8232485f74847c05b80f58aca25658d9548e5ddc18b0d01cff64ee

  • SSDEEP

    49152:y0GAdYjF3hm9Y74R+rVuFhi9xj+wj2z4ThqYe:hdophmlR8LxjPRThDe

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 11 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 5 IoCs
    installer

Files

  • b33e75eee001379c213f4b9a80863791_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections

  • $PLUGINSDIR/AdvSplash.dll
    .dll windows:4 windows x86 arch:x86

    741b6bafe355b63a372d737b30543a95


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    4ec328f99bdd944fc98d8a5cf11f7a62


    Headers

    Imports

    Exports

    Sections

  • $TEMP/install_flash_player_active_x.exe
    .exe windows:4 windows x86 arch:x86

    f14903f539cc8667478f89ca4497258f


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/NSISArray.dll
    .dll windows:4 windows x86 arch:x86

    91596216b99c852af6e0fb1fe8192de4


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    4ec328f99bdd944fc98d8a5cf11f7a62


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UserInfo.dll
    .dll windows:4 windows x86 arch:x86

    48cfa0ea7e353e4a7dd23572da8374ef


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/fpinstall.dll
    .dll windows:4 windows x86 arch:x86

    4bb7026bcfe942cdf23b6f661ad54f48


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsExec.dll
    .dll windows:4 windows x86 arch:x86

    238a16a49edf3ab59e2f8c89449c9af7


    Headers

    Imports

    Exports

    Sections

  • Flash9e.ocx
    .dll regsvr32 windows:4 windows x86 arch:x86

    4b3db273ae1073c5fb8f343f4f754869


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • FlashUtil9e.exe
    .exe windows:4 windows x86 arch:x86

    a9d79d340821ec352051fcf0138d0a55


    Code Sign

    Headers

    Imports

    Sections

  • uninstall_activeX.exe.nsis
  • BlinkxBroadbandTV.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • data/brasilbbtv.bmp
  • data/brazil.ini
  • uninstall.exe
    .exe windows:4 windows x86 arch:x86

    7fa974366048f9c551ef45714595665e


    Headers

    Imports

    Sections