Overview

overview

7

Static

static

7

Components/7z.dll

windows7-x64

3

Components/7z.dll

windows10-2004-x64

3

Components...og.dll

windows7-x64

3

Components...og.dll

windows10-2004-x64

3

Components...te.url

windows7-x64

1

Components...te.url

windows10-2004-x64

1

Components...rt.vbs

windows7-x64

1

Components...rt.vbs

windows10-2004-x64

1

Components...A2.exe

windows7-x64

1

Components...A2.exe

windows10-2004-x64

1

Components...A2.exe

windows7-x64

3

Components...A2.exe

windows10-2004-x64

3

Components...oc.sys

windows7-x64

1

Components...oc.sys

windows10-2004-x64

1

Components...oc.sys

windows7-x64

1

Components...oc.sys

windows10-2004-x64

1

Components...sk.exe

windows7-x64

1

Components...sk.exe

windows10-2004-x64

1

Components...sk.exe

windows7-x64

1

Components...sk.exe

windows10-2004-x64

3

Components...sk.exe

windows7-x64

Components...sk.exe

windows10-2004-x64

Components...sk.dll

windows7-x64

1

Components...sk.dll

windows10-2004-x64

1

Components...sk.dll

windows7-x64

3

Components...sk.dll

windows10-2004-x64

3

Components...sk.cpl

windows7-x64

1

Components...sk.cpl

windows10-2004-x64

1

Components...vc.exe

windows7-x64

1

Components...vc.exe

windows10-2004-x64

1

Components...vc.exe

windows7-x64

3

Components...vc.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    bfe9bd95042bc327a8d1fc5308278fca_JaffaCakes118

  • Size

    13.4MB

  • MD5

    bfe9bd95042bc327a8d1fc5308278fca

  • SHA1

    f37e7e0594f5f3fae1dd7ae6d48ceaa155bb8b4b

  • SHA256

    304f7272d3b452c947fda6199d6d7c8c9a9ea89f8b54775de631c95219cb5229

  • SHA512

    05aa8003659f933c9cbd0de2fbc77d3ce454f68c9292f47e65aa907610ad7194a89bdc90707f052fcd5fd34f7db0f75023204b8402dae75249a9cf6b02ff1392

  • SSDEEP

    393216:RPgrfulipIzn1lo9l9ttaOYCd45P2l3GIsVhbWgq9OG:VMul4ITw4OYChEVKZ95

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 26 IoCs

    Checks for missing Authenticode signature.

Files

  • bfe9bd95042bc327a8d1fc5308278fca_JaffaCakes118
    .zip
  • Components/7z.dll
    .dll windows:4 windows x86 arch:x86

    71fc45db7a81ce236f432a828a4e8fcd


    Headers

    Imports

    Exports

    Sections

  • Components/AboutDialog.dll
    .dll windows:5 windows x86 arch:x86

    4ca470dea21cf8a35536b91f9492cc53


    Headers

    Imports

    Exports

    Sections

  • Components/AntiSMS/GRLDR
  • Components/Bootstrap/FAT16-DOS.bin
  • Components/Bootstrap/FAT16-GRUB.bin
  • Components/Bootstrap/FAT16.bin
  • Components/Bootstrap/FAT32-GRUB.bin
  • Components/Bootstrap/FAT32.bin
  • Components/Bootstrap/FAT32B1.bin
  • Components/Bootstrap/FAT32B2.bin
  • Components/Bootstrap/MBC-GRUB.bin
  • Components/Bootstrap/MBC.bin
  • Components/Bootstrap/MBCB1-GRUB.bin
  • Components/Bootstrap/NTFS-GRUB.bin
  • Components/Bootstrap/NTFS.bin
  • Components/Bootstrap/NTFSB1-GRUB.bin
  • Components/Bootstrap/NTFSB1.bin
  • Components/Bootstrap/exFAT-GRUB.bin
  • Components/Bootstrap/exFATB1-GRUB.bin
  • Components/GrubConfig/DOS/Default/default
  • Components/GrubConfig/DOS/Default/menu.lst
  • Components/GrubConfig/DOS/FDD/default
  • Components/GrubConfig/DOS/FDD/menu.lst
  • Components/GrubConfig/DOS/HDDplus/default
  • Components/GrubConfig/DOS/HDDplus/menu.lst
  • Components/GrubConfig/NTLDR/Default/default
  • Components/GrubConfig/NTLDR/Default/menu.lst
  • Components/GrubConfig/NTLDR/FDD/default
  • Components/GrubConfig/NTLDR/FDD/menu.lst
  • Components/GrubConfig/NTLDR/HDDplus/default
  • Components/GrubConfig/NTLDR/HDDplus/menu.lst
  • Components/GrubConfig/Vista/Default/default
  • Components/GrubConfig/Vista/Default/menu.lst
  • Components/GrubConfig/Vista/FDD/default
  • Components/GrubConfig/Vista/FDD/menu.lst
  • Components/GrubConfig/Vista/HDDplus/default
  • Components/GrubConfig/Vista/HDDplus/menu.lst
  • Components/GrubConfig/VistaPE/Default/default
  • Components/GrubConfig/VistaPE/Default/menu.lst
  • Components/GrubConfig/VistaPE/FDD/default
  • Components/GrubConfig/VistaPE/FDD/menu.lst
  • Components/GrubConfig/VistaPE/HDDplus/default
  • Components/GrubConfig/VistaPE/HDDplus/menu.lst
  • Components/GrubConfig/WToGo/Default/default
  • Components/GrubConfig/WToGo/Default/menu.lst
  • Components/GrubConfig/WToGo/FDD/default
  • Components/GrubConfig/WToGo/FDD/menu.lst
  • Components/GrubConfig/WToGo/HDDplus/default
  • Components/GrubConfig/WToGo/HDDplus/menu.lst
  • Components/GrubConfig/XP/Default/default
  • Components/GrubConfig/XP/Default/menu.lst
  • Components/GrubConfig/XP/FDD/default
  • Components/GrubConfig/XP/FDD/menu.lst
  • Components/GrubConfig/XP/HDDplus/default
  • Components/GrubConfig/XP/HDDplus/menu.lst
  • Components/GrubConfig/XPPE/Default/default
  • Components/GrubConfig/XPPE/Default/menu.lst
  • Components/GrubConfig/XPPE/FDD/default
  • Components/GrubConfig/XPPE/FDD/menu.lst
  • Components/GrubConfig/XPPE/HDDplus/default
  • Components/GrubConfig/XPPE/HDDplus/menu.lst
  • Components/GrubConfig/XPRC/Default/default
  • Components/GrubConfig/XPRC/Default/menu.lst
  • Components/GrubConfig/XPRC/FDD/default
  • Components/GrubConfig/XPRC/FDD/menu.lst
  • Components/GrubConfig/XPRC/HDDplus/default
  • Components/GrubConfig/XPRC/HDDplus/menu.lst
  • Components/MultibootDB.nconf
  • Components/MultibootManager/BootCore/WinToFlash [The Bootable USB Creator] Website.url
  • Components/MultibootManager/BootCore/autorun.inf
  • Components/MultibootManager/BootCore/grldr
  • Components/MultibootManager/BootCore/wnfmbm.ico
  • Components/MultibootManager/BootCore/wnfmbm/binaries/bios
  • Components/MultibootManager/BootCore/wnfmbm/data/mnusrvs.txt
  • Components/MultibootManager/BootCore/wnfmbm/data/sbkg1024.gz
    .gz
  • sbkg1024.bmp
  • Components/MultibootManager/BootCore/wnfmbm/data/sbkg1280.gz
    .gz
  • sbkg1280.bmp
  • Components/MultibootManager/BootCore/wnfmbm/data/sbkg640.gz
    .gz
  • sbkg640.bmp
  • Components/MultibootManager/BootCore/wnfmbm/data/sbkg800.gz
    .gz
  • sbkg800.bmp
  • Components/MultibootManager/BootCore/wnfmbm/data/stdufnt.gz
  • Components/MultibootManager/BootCore/wnfmbm/scripts/SrSHIFT.mbm
  • Components/MultibootManager/BootCore/wnfmbm/scripts/StGENFLP.mbm
  • Components/MultibootManager/BootCore/wnfmbm/scripts/StGENOPT.mbm
  • Components/MultibootManager/BootCore/wnfmbm/scripts/StGRUB.mbm
  • Components/MultibootManager/BootCore/wnfmbm/scripts/StSLX.mbm
  • Components/MultibootManager/BootCore/wnfmbm/scripts/StWV.mbm
  • Components/MultibootManager/BootCore/wnfmbm/start.mbm
    .vbs
  • Components/MultibootManager/SSA2/amd64/SSA2.exe
    .exe windows:5 windows x64 arch:x64

    284744d8b95b3b4739e413ab22a1305a


    Headers

    Imports

    Exports

    Sections

  • Components/MultibootManager/SSA2/i386/SSA2.exe
    .exe windows:5 windows x86 arch:x86

    fffc37c947d70240e719d821d98cafe4


    Headers

    Imports

    Exports

    Sections

  • Components/MultibootManager/base menu.txt
  • Components/MultibootManager/imdisk/awealloc/amd64/awealloc.sys
    .sys windows:6 windows x64 arch:x64

    e2c0e112b9171594fa2bc30bbc636b40


    Code Sign

    Headers

    Imports

    Sections

  • Components/MultibootManager/imdisk/awealloc/i386/awealloc.sys
    .sys windows:6 windows x86 arch:x86

    9467d1d62e583eccf5d04c4b58806a81


    Code Sign

    Headers

    Imports

    Sections

  • Components/MultibootManager/imdisk/awealloc/ia64/awealloc.sys
  • Components/MultibootManager/imdisk/cli/amd64/imdisk.exe
    .exe windows:6 windows x64 arch:x64

    d5ba447d48367ebfae005f47e8702880


    Code Sign

    Headers

    Imports

    Sections

  • Components/MultibootManager/imdisk/cli/i386/imdisk.exe
    .exe windows:6 windows x86 arch:x86

    3dc1afc4112330878a310ce47f84ebc0


    Code Sign

    Headers

    Imports

    Sections

  • Components/MultibootManager/imdisk/cli/ia64/imdisk.exe
  • Components/MultibootManager/imdisk/cpl/amd64/imdisk.cpl
    .dll windows:6 windows x64 arch:x64

    40051881d04ec370e5fe93d8977de786


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Components/MultibootManager/imdisk/cpl/i386/imdisk.cpl
    .dll windows:6 windows x86 arch:x86

    11ae789ff7d8256c13b396cf3aae82a4


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Components/MultibootManager/imdisk/cpl/ia64/imdisk.cpl
  • Components/MultibootManager/imdisk/cpl/imdisk.cpl.manifest
    .xml
  • Components/MultibootManager/imdisk/gpl.txt
  • Components/MultibootManager/imdisk/imdisk.inf
  • Components/MultibootManager/imdisk/svc/amd64/imdsksvc.exe
    .exe windows:6 windows x64 arch:x64

    5f396dd5480bb935c0da9a8c99c9bf26


    Code Sign

    Headers

    Imports

    Sections

  • Components/MultibootManager/imdisk/svc/i386/imdsksvc.exe
    .exe windows:6 windows x86 arch:x86

    5e6b831f1cb9d153ca257745af9c30d4


    Code Sign

    Headers

    Imports

    Sections

  • Components/MultibootManager/imdisk/svc/ia64/imdsksvc.exe
  • Components/MultibootManager/imdisk/sys/amd64/imdisk.sys
    .sys windows:6 windows x64 arch:x64

    ca1b7a99c1db8c685051151b20cecfd0


    Code Sign

    Headers

    Imports

    Sections

  • Components/MultibootManager/imdisk/sys/i386/imdisk.sys
    .sys windows:6 windows x86 arch:x86

    0f7dd87f79d112f5be926ddd046011c3


    Code Sign

    Headers

    Imports

    Sections

  • Components/MultibootManager/imdisk/sys/ia64/imdisk.sys
  • Components/NTFS/AttrDef.bin
  • Components/NTFS/LogFile.bin
  • Components/NTFS/MFT.bin
  • Components/NTFS/MFTBitmap.bin
  • Components/NTFS/RootDir.bin
  • Components/NTFS/SecureSDS.bin
  • Components/NTFS/Upcase.bin
    .ps1
  • Components/Standard EULA.txt
  • Components/UEFI/bootmgfw.efi
    .dll windows:0 windows x64 arch:x64


    Code Sign

    Headers

    Sections

  • Components/WToGo/bcd
  • Components/WinContig/Readme_de-DE.txt
  • Components/WinContig/Readme_en-US.txt
  • Components/WinContig/Readme_es-ES.txt
  • Components/WinContig/Readme_fr-FR.txt
  • Components/WinContig/Readme_it-IT.txt
  • Components/WinContig/Readme_ja-JP.txt
  • Components/WinContig/Readme_ko-KR.txt
  • Components/WinContig/Readme_pt-BR.txt
  • Components/WinContig/Readme_ru-RU.txt
  • Components/WinContig/Readme_tr-TR.txt
  • Components/WinContig/WinContig.exe
    .exe windows:4 windows x86 arch:x86

    b3b5b1ae5889184e70b219d93911ba19


    Headers

    Imports

    Sections

  • Components/WinContig/WinContig64.exe
    .exe windows:4 windows x64 arch:x64

    ba5cf3af5676d089d1a74567103a1d65


    Headers

    Imports

    Sections

  • Components/WinContig/lang/WinContig_af-ZA.lng
  • Components/WinContig/lang/WinContig_bg-BG.lng
  • Components/WinContig/lang/WinContig_cs-CZ.lng
  • Components/WinContig/lang/WinContig_de-DE.lng
  • Components/WinContig/lang/WinContig_el-GR.lng
  • Components/WinContig/lang/WinContig_en-US.lng
  • Components/WinContig/lang/WinContig_es-ES.lng
  • Components/WinContig/lang/WinContig_fi-FI.lng
  • Components/WinContig/lang/WinContig_fr-FR.lng
  • Components/WinContig/lang/WinContig_hu-HU.lng
  • Components/WinContig/lang/WinContig_it-IT.lng
  • Components/WinContig/lang/WinContig_ja-JP.lng
  • Components/WinContig/lang/WinContig_ka-GE.lng
  • Components/WinContig/lang/WinContig_ko-KR.lng
  • Components/WinContig/lang/WinContig_nl-NL.lng
  • Components/WinContig/lang/WinContig_pl-PL.lng
  • Components/WinContig/lang/WinContig_pt-BR.lng
  • Components/WinContig/lang/WinContig_pt-PT.lng
  • Components/WinContig/lang/WinContig_ro-RO.lng
  • Components/WinContig/lang/WinContig_ru-RU.lng
  • Components/WinContig/lang/WinContig_sk-SK.lng
  • Components/WinContig/lang/WinContig_sl-SL.lng
  • Components/WinContig/lang/WinContig_sv-SE.lng
  • Components/WinContig/lang/WinContig_tr-TR.lng
  • Components/WinContig/lang/WinContig_vi-VN.lng
  • Components/WinContig/lang/WinContig_zh-CN.lng
  • Components/WinContig/lang/WinContig_zh-TW.lng
  • Components/WinToFlash 863167.nkey
  • Components/XPRCboot.ini
  • Components/XPRCcmd.bi_
    .zip
  • Background.bmp
  • Components/XPRCcmd.bin
  • Components/XPRCwinnt.sif
  • Components/boot.ini
  • Components/exFAT/Upcase.bin
  • Components/grldr
  • Components/migrate.inf
  • Components/product.nconf
  • Components/ssa.ex_
    .cab
  • ssa.exe
    .exe windows:5 windows x86 arch:x86

    b416f49c6654d6cb273dd95cd43c8f11


    Headers

    Imports

    Sections

  • Components/wim.dll
    .dll windows:4 windows x86 arch:x86

    adfe917bc50264a722e32631ea3f05ad


    Headers

    Imports

    Exports

    Sections

  • Components/winbom.ini
  • Documents/Hardware Compatibility List.rtf
    .rtf
  • Documents/Translation authors.rtf
    .rtf
  • EULA EnUS.rtf
    .rtf
  • Feedback/null.txt
  • Language/How to translate to your language.rtf
    .rtf
  • Language/lc0404.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc0409.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc040A.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc040C.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc0410.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc0412.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc0413.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc0416.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc0419.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc0804.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc0814.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • Language/lc2C01.dll
    .dll windows:5 windows x86 arch:x86

    1872305086e663262658419e91fbf5f6


    Headers

    Imports

    Exports

    Sections

  • License/null.txt
  • Logs/null.txt
  • Multiboot Cache/null.txt
  • Options/null.txt
  • Profiles/null.txt
  • Skins/Default/images/About window - Logo.bmp
  • Skins/Default/images/Container reading form - Logo.bmp
  • Skins/Default/images/First Start Wizard - Stand By.GIF
    .gif
  • Skins/Default/images/Format warning window - Logo.bmp
  • Skins/Default/images/Go online window - Logo.bmp
  • Skins/Default/images/Information window - Logo.bmp
  • Skins/Default/images/Main window - AntiSMS - Simplix AntiSMS logo.bmp
  • Skins/Default/images/Main window - DOS transfer - DOS box.bmp
  • Skins/Default/images/Main window - Hirens - Hirens logo.bmp
  • Skins/Default/images/Main window - Multiboot logo.bmp
  • Skins/Default/images/Main window - Update warning.bmp
  • Skins/Default/images/Main window - Windows Vista live CD transfer - Live CD logo.bmp
    .ps1
  • Skins/Default/images/Main window - Windows Vista transfer - Windows 10 box.bmp
  • Skins/Default/images/Main window - Windows Vista transfer - Windows 7 box.bmp
  • Skins/Default/images/Main window - Windows Vista transfer - Windows 8 box.bmp
  • Skins/Default/images/Main window - Windows Vista transfer - Windows Vista box.bmp
  • Skins/Default/images/Main window - Windows XP emergency bootloader - Loader logo.bmp
  • Skins/Default/images/Main window - Windows XP live CD transfer - Live CD logo.bmp
    .ps1
  • Skins/Default/images/Main window - Windows XP recovery console - Loader logo.bmp
  • Skins/Default/images/Main window - Windows XP transfer - Windows 2003 box.bmp
  • Skins/Default/images/Main window - Windows XP transfer - Windows XP box.bmp
  • Skins/Default/images/Main window - Wizard logo.bmp
  • Skins/Default/images/Options window - Laguage reset.bmp
  • Skins/Default/images/Splash screen.bmp
  • Skins/Default/images/Statistics window - logo.bmp
  • Skins/Default/sounds/null.txt
  • ValueAdd/3rdParty/null.txt
  • ValueAdd/Novicorp/License File Converter/LicenseFileConverter.exe
    .exe windows:5 windows x86 arch:x86

    bb9b263c34d77b0a1bf4a3e95a30bbb8


    Headers

    Imports

    Sections

  • ValueAdd/Novicorp/WinToFlash [The Bootable USB Creator] Website.url
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/SDL.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/bios.bin
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/linuxboot.bin
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/multiboot.bin
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/pxe-e1000.rom
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/pxe-eepro100.rom
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/pxe-ne2k_pci.rom
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/pxe-pcnet.rom
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/pxe-rtl8139.rom
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/pxe-virtio.rom
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/qemu-system-x86_64.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/qemu.exe
    .exe windows:4 windows x86 arch:x86


    Headers

    Sections

  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/vgabios-cirrus.bin
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/vgabios-stdvga.bin
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/vgabios-vmware.bin
  • ValueAdd/Novicorp/emutest/Components/QEMU 0.15.1/vgabios.bin
  • ValueAdd/Novicorp/emutest/emutest.exe
    .exe windows:5 windows x86 arch:x86

    da2e3271e732425bb83e560202bd9817


    Headers

    Imports

    Sections

  • WinToFlash [The Bootable USB Creator] Website.url
  • WinToFlash.checksum
  • WinToFlash.exe
    .exe windows:5 windows x86 arch:x86

    f033a14441dc1966efabe69b2778d737


    Headers

    Imports

    Sections

  • logo.ico