Overview

overview

6

Static

static

3

f615038a5f...18.exe

windows7-x64

3

f615038a5f...18.exe

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

inshopping.dll

windows7-x64

6

inshopping.dll

windows10-2004-x64

6

inshoppingup.exe

windows7-x64

inshoppingup.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f615038a5f05a0470cdb1bf0a9d6d36d_JaffaCakes118

  • Size

    233KB

  • MD5

    f615038a5f05a0470cdb1bf0a9d6d36d

  • SHA1

    05fb30263c773f35860a2105a6556fe5bebdb015

  • SHA256

    4971bfa74654509ec737e40cd9f16ac603bad1cc3b999fb6d92bc8cb0fd4c8c9

  • SHA512

    77e7c5d52ed198851b63dec6eed1fb4858c7d05cf34ff4249c0fe95ac737207bef5ea5fa16f13b693b26687224bc8a4128bee52d0603418a8a305f902ea564af

  • SSDEEP

    6144:+sPKexlzOWwJ9Eb4D2JhbnJJj89grMzUum+:Pbtwwb4kxP0sMw+

Score
3/10

Malware Config

Signatures

  • Unsigned PE 4 IoCs

    Checks for missing Authenticode signature.

  • NSIS installer 2 IoCs
    installer

Files

  • f615038a5f05a0470cdb1bf0a9d6d36d_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    099c0646ea7282d232219f8807883be0


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:4 windows x86 arch:x86

    b1cd0d78f652ce5fc63f0879371af012


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-header.bmp
  • $PLUGINSDIR/modern-wizard.bmp
  • domainrefer.dat
  • inshopping.dll
    .dll regsvr32 windows:4 windows x86 arch:x86

    d2b08df56a002e05bb8339783335faf9


    Headers

    Imports

    Exports

    Sections

  • inshoppingup.exe
    .exe windows:4 windows x86 arch:x86

    b5d4c579e0a348f3b8dc8a1ac9969b06


    Headers

    Imports

    Sections