Overview

overview

7

Static

static

7

c1a7504e4e...18.exe

windows7-x64

7

c1a7504e4e...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

RegistryCleaner.exe

windows7-x64

7

RegistryCleaner.exe

windows10-2004-x64

7

uninstall.exe

windows7-x64

7

uninstall.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    c1a7504e4e8820add4b02f7ea7d49a61_JaffaCakes118

  • Size

    544KB

  • MD5

    c1a7504e4e8820add4b02f7ea7d49a61

  • SHA1

    c3df7b0f2c42b68723ba4735cc7be750a40f962a

  • SHA256

    4701afd5f9bcc1782f5f6dc405f59e0bbe7e3c5cac41ada1c22d88404edffc5c

  • SHA512

    c5ed522eb105316f70672a3ba0d8b27757d4edbacb54713e44bf5d59b60b748181c5c1f35520f9fd957b15f87c14b919aea5407c46fcba31779d05f5adb3729b

  • SSDEEP

    12288:hNWNtlIWFmU/IF3Zj6yoNJy1DfFstjbmxtKYsz3CG8n1QET1sleKxl0:iBPm8IZZj6niLF4bmvKqGQ9pIPl0

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • c1a7504e4e8820add4b02f7ea7d49a61_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    55f3dfd13c0557d3e32bcbc604441dd3


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • RegistryCleaner.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • uninstall.exe
    .exe windows:4 windows x86 arch:x86

    55f3dfd13c0557d3e32bcbc604441dd3


    Headers

    Imports

    Sections