Overview

overview

7

Static

static

3

ce27460bb2...18.exe

windows7-x64

7

ce27460bb2...18.exe

windows10-2004-x64

7

$1/Tablacu...ff.exe

windows7-x64

3

$1/Tablacu...ff.exe

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$R1/$APPDA...er.exe

windows7-x64

7

$R1/$APPDA...er.exe

windows10-2004-x64

7

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

$R1/Tablacus.exe

windows7-x64

4

$R1/Tablacus.exe

windows10-2004-x64

3

$R1/TablacusApp.exe

windows7-x64

3

$R1/TablacusApp.exe

windows10-2004-x64

3

$R1/script...und.js

windows7-x64

3

$R1/script...und.js

windows10-2004-x64

3

$R1/script/common.js

windows7-x64

3

$R1/script/common.js

windows10-2004-x64

3

$R1/script/consts.js

windows7-x64

3

$R1/script/consts.js

windows10-2004-x64

3

$R1/script...g.html

windows7-x64

3

$R1/script...g.html

windows10-2004-x64

3

$R1/script/index.html

windows7-x64

3

$R1/script/index.html

windows10-2004-x64

3

$R1/script/index.js

windows7-x64

3

$R1/script/index.js

windows10-2004-x64

3

$R1/script...n.html

windows7-x64

3

$R1/script...n.html

windows10-2004-x64

3

$R1/script...s.html

windows7-x64

3

$R1/script...s.html

windows10-2004-x64

1

$R1/script/options.js

windows7-x64

3

$R1/script/options.js

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    ce27460bb23f901ff210711a87514a11_JaffaCakes118

  • Size

    450KB

  • MD5

    ce27460bb23f901ff210711a87514a11

  • SHA1

    026a551354d42b2243ab00be5d19a3c49d17d2db

  • SHA256

    beb64baeb2dcd77e6a78e69c66be736270d364e05c33ca552ae80f9f0e2c7fcf

  • SHA512

    f70752f863a1a61d4e205d4540e962aa99a46c4be4d1968b3b5ed0a944c1cf28badcef8daef5b903b36457f4c514fcadbd957dca9c0060d0168a0edfc82d7e44

  • SSDEEP

    6144:zpkXGhVesqNG+sylUtLb0CIAMRMXLO1fwv/3K6YjTr8ACYvrGeSu3JRL6Tzmr1Dx:uI8sdcNqOQ/3AjTr7vHSujL6TcYgj

Score
3/10

Malware Config

Signatures

  • Unsigned PE 7 IoCs

    Checks for missing Authenticode signature.

Files

  • ce27460bb23f901ff210711a87514a11_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    e2a592076b17ef8bfb48b7e03965a3fc


    Headers

    Imports

    Sections

  • $1/TablacusInstallerStuff.exe
    .exe windows:6 windows x86 arch:x86

    f0c3c70602aea390651e3d90231bd79d


    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:5 windows x86 arch:x86

    439074d1c01f7b16781bdf060930814a


    Headers

    Imports

    Exports

    Sections

  • $R1/$APPDATA/TablacusApp/uninstaller.exe
    .exe windows:4 windows x86 arch:x86

    e2a592076b17ef8bfb48b7e03965a3fc


    Headers

    Imports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:5 windows x86 arch:x86

    439074d1c01f7b16781bdf060930814a


    Headers

    Imports

    Exports

    Sections

  • $R1/Tablacus.exe
    .exe windows:5 windows x86 arch:x86

    8d3fcb29b341b50d5a29b25cb6dc7da7


    Headers

    Imports

    Sections

  • $R1/TablacusApp.exe
    .exe windows:5 windows x86 arch:x86

    b18876a86793ab97030ba07644d59939


    Headers

    Imports

    Sections

  • $R1/config/window.xml
    .xml
  • $R1/init/addons.xml
    .xml
  • $R1/init/key.xml
    .xml
  • $R1/init/menus.xml
    .xml
  • $R1/init/mouse.xml
    .xml
  • $R1/lang/de.xml
  • $R1/lang/en.xml
  • $R1/lang/es.xml
  • $R1/lang/fr.xml
  • $R1/lang/it.xml
  • $R1/lang/ja.xml
  • $R1/lang/pt.xml
  • $R1/lang/ru.xml
  • $R1/lang/zh.xml
  • $R1/lang/zh_cn.xml
  • $R1/layout/1tab.xml
    .xml
  • $R1/layout/4tabs.xml
    .xml
  • $R1/layout/bottom_tab.xml
    .xml
  • $R1/layout/h2tabs.xml
    .xml
  • $R1/layout/left_tab.xml
    .xml
  • $R1/layout/right_tab.xml
    .xml
  • $R1/layout/tree_1tab.xml
    .xml
  • $R1/layout/tree_2tabs.xml
    .xml
  • $R1/layout/v2tabs.xml
    .xml
  • $R1/layout/vertical_tab.xml
    .xml
  • $R1/readme.txt
  • $R1/script/background.js
    .js
  • $R1/script/common.js
    .js
  • $R1/script/consts.js
    .js
  • $R1/script/dialog.html
    .html
  • $R1/script/index.css
  • $R1/script/index.html
    .html
  • $R1/script/index.js
    .js
  • $R1/script/location.html
    .html
  • $R1/script/options.css
  • $R1/script/options.html
    .html
  • $R1/script/options.js
    .js