Overview

overview

4

Static

static

3

bea28f087c...18.exe

windows7-x64

4

bea28f087c...18.exe

windows10-2004-x64

4

chrome/con...er.exe

windows7-x64

3

chrome/con...er.exe

windows10-2004-x64

3

chrome/con...enu.js

windows7-x64

3

chrome/con...enu.js

windows10-2004-x64

3

chrome/con...ure.js

windows7-x64

3

chrome/con...ure.js

windows10-2004-x64

3

chrome/con...eAs.js

windows7-x64

3

chrome/con...eAs.js

windows10-2004-x64

3

components...ice.js

windows7-x64

3

components...ice.js

windows10-2004-x64

3

defaults/p...enu.js

windows7-x64

3

defaults/p...enu.js

windows10-2004-x64

3

$PLUGINSDI...er.dll

windows7-x64

3

$PLUGINSDI...er.dll

windows10-2004-x64

3

$PLUGINSDI...XP.dll

windows7-x64

3

$PLUGINSDI...XP.dll

windows10-2004-x64

3

$PLUGINSDI...ts.exe

windows7-x64

3

$PLUGINSDI...ts.exe

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...Ex.dll

windows7-x64

3

$PLUGINSDI...Ex.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

chrome/con...er.exe

windows7-x64

3

chrome/con...er.exe

windows10-2004-x64

3

chrome/con...enu.js

windows7-x64

3

chrome/con...enu.js

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    bea28f087cc664cff82c775ecadbb34a_JaffaCakes118

  • Size

    17.2MB

  • MD5

    bea28f087cc664cff82c775ecadbb34a

  • SHA1

    8ef50690e434ada6ae38b7d8a27ace46a920dc62

  • SHA256

    2b03dbc5b97d644bb498e6ad01ee65312705553c77f14ee32059111d28a0b36f

  • SHA512

    8479e1b9e92d9e645f0167e3b9fa2712ac3c50b3c82f67de9b4014524757b65c3c900d0148f38ef865f450f7ac22c3398dde2264dd7707a2745bfa5ffb54aa0d

  • SSDEEP

    393216:cH/LhoV4/LtFrm1E9sr3+ESCQpZ3mnbXtVS:y/H/Lttm1E9sasQpZybX/S

Score
3/10

Malware Config

Signatures

  • Unsigned PE 7 IoCs

    Checks for missing Authenticode signature.

Files

  • bea28f087cc664cff82c775ecadbb34a_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    1f23f452093b5c1ff091a2f9fb4fa3e9


    Code Sign

    Headers

    Imports

    Sections

  • $0/extensions/staged-xpis/{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}/bitcomet_extension_signed.xpi
    .zip
  • BitComet Extension.txt
  • META-INF/manifest.mf
  • META-INF/zigbert.rsa
  • META-INF/zigbert.sf
  • chrome.manifest
  • chrome/content/BitCometLauncher.exe
    .exe windows:6 windows x86 arch:x86

    bbd0693ed27b40533cecfc3b9ce87dec


    Code Sign

    Headers

    Imports

    Sections

  • chrome/content/bc_context_menu.js
    .js
  • chrome/content/bc_context_menu.xul
    .xml
  • chrome/content/bc_media_capture.js
    .js
  • chrome/content/bc_media_capture.xul
    .xml
  • chrome/content/unknownContentTypeSaveAs.js
    .js
  • chrome/content/unknownContentTypeSaveAs.xul
  • chrome/locale/en-US/bc_context_menu.dtd
  • chrome/locale/en-US/bc_media_capture.dtd
  • chrome/locale/en-US/bc_media_capture.properties
  • chrome/locale/zh-CN/bc_context_menu.dtd
  • chrome/locale/zh-CN/bc_media_capture.dtd
  • chrome/locale/zh-CN/bc_media_capture.properties
  • chrome/skin/download_all.png
    .png
  • chrome/skin/download_link.png
    .png
  • chrome/skin/download_media.png
    .png
  • chrome/skin/icon.png
    .png
  • components/DownloadService.js
    .js
  • defaults/preferences/bc_context_menu.js
  • install.rdf
  • readme.txt
  • $PLUGINSDIR/BcNsisHelper.dll
    .dll windows:5 windows x86 arch:x86

    9a59b3ff8b3924b49313a8201fc474e5


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/BcNsisHelperXP.dll
    .dll windows:6 windows x86 arch:x86

    dd777c9710fcc8b0b64c5fcec7aa17c2


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/BitComet_stats.exe
    .exe windows:4 windows x86 arch:x86

    85c5153892863e50749ae0b816c52411


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    4b45b7e00344a87332fbd12653854d1a


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/InstallOptionsEx.dll
    .dll windows:5 windows x86 arch:x86

    284d139f489ef5d980b7efc06948888b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:4 windows x86 arch:x86

    3e8d18bb71c7ebbda2ddc2a4bb03547b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/bitcomet_extension_signed.xpi
    .zip
  • BitComet Extension.txt
  • META-INF/manifest.mf
  • META-INF/zigbert.rsa
  • META-INF/zigbert.sf
  • chrome.manifest
  • chrome/content/BitCometLauncher.exe
    .exe windows:6 windows x86 arch:x86

    bbd0693ed27b40533cecfc3b9ce87dec


    Code Sign

    Headers

    Imports

    Sections

  • chrome/content/bc_context_menu.js
    .js
  • chrome/content/bc_context_menu.xul
    .xml
  • chrome/content/bc_media_capture.js
    .js
  • chrome/content/bc_media_capture.xul
    .xml
  • chrome/content/unknownContentTypeSaveAs.js
    .js
  • chrome/content/unknownContentTypeSaveAs.xul
  • chrome/locale/en-US/bc_context_menu.dtd
  • chrome/locale/en-US/bc_media_capture.dtd
  • chrome/locale/en-US/bc_media_capture.properties
  • chrome/locale/zh-CN/bc_context_menu.dtd
  • chrome/locale/zh-CN/bc_media_capture.dtd
  • chrome/locale/zh-CN/bc_media_capture.properties
  • chrome/skin/download_all.png
    .png
  • chrome/skin/download_link.png
    .png
  • chrome/skin/download_media.png
    .png
  • chrome/skin/icon.png
    .png
  • components/DownloadService.js
    .js
  • defaults/preferences/bc_context_menu.js
  • install.rdf
  • readme.txt
  • $PLUGINSDIR/firefoxextension.ini
  • $PLUGINSDIR/http_Downloader.exe
    .exe windows:5 windows x86 arch:x86

    7fb458429612d063f0f1ef206ac8e34c


    Headers

    Imports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • BitComet.exe
    .exe windows:5 windows x64 arch:x64

    c1b12164a5db808e3552ad17cc59fbb0


    Code Sign

    Headers

    Imports

    Sections

  • ChangeLog.txt
  • ChangeLog_Chinese.txt
  • License.txt
  • License_Chinese.txt
  • ReadMe.txt
  • ReadMe_Chinese.txt
  • tools/bitcomet_extension_signed.xpi
    .zip
  • BitComet Extension.txt
  • META-INF/manifest.mf
  • META-INF/zigbert.rsa
  • META-INF/zigbert.sf
  • chrome.manifest
  • chrome/content/BitCometLauncher.exe
    .exe windows:6 windows x86 arch:x86

    bbd0693ed27b40533cecfc3b9ce87dec


    Code Sign

    Headers

    Imports

    Sections

  • chrome/content/bc_context_menu.js
    .js
  • chrome/content/bc_context_menu.xul
    .xml
  • chrome/content/bc_media_capture.js
    .js
  • chrome/content/bc_media_capture.xul
    .xml
  • chrome/content/unknownContentTypeSaveAs.js
    .js
  • chrome/content/unknownContentTypeSaveAs.xul
  • chrome/locale/en-US/bc_context_menu.dtd
  • chrome/locale/en-US/bc_media_capture.dtd
  • chrome/locale/en-US/bc_media_capture.properties
  • chrome/locale/zh-CN/bc_context_menu.dtd
  • chrome/locale/zh-CN/bc_media_capture.dtd
  • chrome/locale/zh-CN/bc_media_capture.properties
  • chrome/skin/download_all.png
    .png
  • chrome/skin/download_link.png
    .png
  • chrome/skin/download_media.png
    .png
  • chrome/skin/icon.png
    .png
  • components/DownloadService.js
    .js
  • defaults/preferences/bc_context_menu.js
  • install.rdf
  • readme.txt