Overview

overview

7

Static

static

3

eab6593290...18.exe

windows7-x64

7

eab6593290...18.exe

windows10-2004-x64

7

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$_6_/$_7_.dll

windows7-x64

6

$_6_/$_7_.dll

windows10-2004-x64

6

BHO/FlashGetBHO.dll

windows7-x64

6

BHO/FlashGetBHO.dll

windows10-2004-x64

6

BHO/FlashGetHook.dll

windows7-x64

3

BHO/FlashGetHook.dll

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    eab6593290c12adea3350600cffbb0f4_JaffaCakes118

  • Size

    7.8MB

  • MD5

    eab6593290c12adea3350600cffbb0f4

  • SHA1

    8a1ddb55b63a67653cd95cfce4313be2c416ad98

  • SHA256

    b6cb7fe82d040b90408d42c2fb66477d8573061eb5a67c9f88fe1b4a3ad57961

  • SHA512

    34462eac71699dc0dbef0ea01b97e6c93ab7ac6a04234214848624006f5b042373c021e73fe911073cc3a486d6a52dde837015f923e7658c0a7a89903ab463ca

  • SSDEEP

    196608:wx/ijiu45W5QCjC50saEQbY8Nr6dvb9juFjer978OQ4wqjrriZTz:ctCj+bcYJ72y9ozniriZTz

Score
3/10

Malware Config

Signatures

  • Unsigned PE 2 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 1 IoCs
    installer

Files

  • eab6593290c12adea3350600cffbb0f4_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    c1d02edd28ce94e699431ce65bed28ec


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/ProcDll.dll
    .dll windows:4 windows x86 arch:x86

    6aac02222a7107798e494b35d1b0b7d6


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    4ec328f99bdd944fc98d8a5cf11f7a62


    Headers

    Imports

    Exports

    Sections

  • $_6_/$_7_
    .dll regsvr32 windows:4 windows x86 arch:x86

    fed56b9bf17616d12f90e24a227846e1


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • BHO/FlashGetBHO.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    fed56b9bf17616d12f90e24a227846e1


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • BHO/FlashGetHook.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    b638d3efc3fb1e7217983ea7e56fda21


    Code Sign

    Headers

    Imports

    Exports

    Sections