General

  • Target

    d40b3517b959668ab656ed5da3b35c8f_JaffaCakes118

  • Size

    299KB

  • MD5

    d40b3517b959668ab656ed5da3b35c8f

  • SHA1

    68f15dfcf4fc11e9179d90a22d1b5d9329757dde

  • SHA256

    c9af3a9f9b5cbfbd20508f22a587089177b7ac054b1909fec046684b43050094

  • SHA512

    fab0dfcbb952bae41286b92af15b8554c242080ce9719a384a0f6991b3a072a1eb943f68a192dc70f0c796515a83c22d8727f772f56bc1d17d5ce7f7e7c64a22

  • SSDEEP

    6144:dOPjfne+1PcYxoetZ8TAU2orbgsmiWHL+Fem8ByDZNaDhc:WLn1mxhrPhWHaF33C1c

Score
3/10

Malware Config

Signatures

  • Unsigned PE 6 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs

Files

  • d40b3517b959668ab656ed5da3b35c8f_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/ButtonLinker.dll
    .dll windows:4 windows x86 arch:x86

    8466b6530f29387ac28e94fe1e74b98f


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/QvodInstaller.dll
    .dll windows:4 windows x86 arch:x86

    01f5771368a1fd14190fe933af7f56f8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    2017f2acbdaa42ab3e4adeb8b4c37e7b


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/leftbg.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsDialogs.dll
    .dll windows:4 windows x86 arch:x86

    1e2884056e655f2b7bc5a904e352fc80


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/processwork.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections