General

  • Target

    fbe82e90e6a7e1a8589e7991dbf28c2b_JaffaCakes118

  • Size

    1.8MB

  • MD5

    fbe82e90e6a7e1a8589e7991dbf28c2b

  • SHA1

    46770d3583df6c705930c09832830e25e63a40d2

  • SHA256

    2446856a789744ecc795d11a7c445390a8cb7437aa3469e7c7cd62e19b020e7a

  • SHA512

    6e5ba86f6aebeef1a8b3ae5b46d316ca69b12be91d0524118d8f4d4e4576982a076dfd5146266fac5c3b2e0c56d645ef34cca04782ca5bcf44b2261da37e171a

  • SSDEEP

    24576:srMMqBDlavjUEQElhcjUuS+kQ0LaSA8o19MNMeE5GKSL1TimWOFCYzfCADRXriJO:srMMulavoRkQb8CuMebMmUYR2iusN

Score
7/10
upx

Malware Config

Signatures

  • ACProtect 1.3x - 1.4x DLL software 1 IoCs

    Detects file using ACProtect software.

  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • fbe82e90e6a7e1a8589e7991dbf28c2b_JaffaCakes118
    .exe windows:4 windows x86 arch:x86

    7ed0d71376e55d58ab36dc7d3ffda898


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/UpdHelper.dll
    .dll windows:6 windows x86 arch:x86

    d21c1bd3aee21744864ab9c392d7044d


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/md5dll.dll
    .dll windows:4 windows x86 arch:x86


    Headers

    Exports

    Sections

  • out.upx
    .dll windows:4 windows x86 arch:x86


    Headers

    Sections

  • $TEMP/$0.nsis
  • $_1_/Modules/clc.dll
    .dll windows:6 windows x86 arch:x86

    cbf300722f610440cd6c79bf07ad301e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_1_/Modules/crm.dll
    .dll windows:6 windows x86 arch:x86

    f3111990a3e3a032076f002b4141c4ef


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_1_/Modules/wis.dll
    .dll windows:6 windows x86 arch:x86

    7b62718b09c9deb241ba8b2fcc471717


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_1_/RtHelp.exe
    .exe windows:6 windows x86 arch:x86

    d29f5270c56771586b86550cf2fec9f2


    Code Sign

    Headers

    Imports

    Sections

  • $_1_/msvcp110.dll
    .dll windows:6 windows x86 arch:x86

    098e9eddf1a24b3fd9465ee992148a02


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • $_1_/msvcr110.dll
    .dll windows:6 windows x86 arch:x86

    e057a95f8936f77238b048f253956b3b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/7z.dll
    .dll windows:4 windows x86 arch:x86

    71fc45db7a81ce236f432a828a4e8fcd


    Headers

    Imports

    Exports

    Sections

  • Modules/cdp.dll
    .dll windows:6 windows x86 arch:x86

    3c0179473e3f5c8e9f4706a95e0351f2


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/clc.dll
    .dll windows:6 windows x86 arch:x86

    cbf300722f610440cd6c79bf07ad301e


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/crm.dll
    .dll windows:6 windows x86 arch:x86

    f3111990a3e3a032076f002b4141c4ef


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/cus.dll
    .dll windows:6 windows x86 arch:x86

    f2d162af3962618bdfc4de3bd93b5c96


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/nls.dll
    .dll windows:6 windows x86 arch:x86

    31888b2008aa58c8a870f953efa0cadf


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/nvs.dll
    .dll windows:6 windows x86 arch:x86

    84c3d1a4753680ed6e954de92c3cfa21


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/pfs.dll
    .dll windows:6 windows x86 arch:x86

    3bd4b5c00a3fe682f3c9c8dd7fccce66


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/wcm.dll
    .dll windows:6 windows x86 arch:x86

    7f0a03f440961ef0bd2e88d000f5481b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/wis.dll
    .dll windows:6 windows x86 arch:x86

    7b62718b09c9deb241ba8b2fcc471717


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Modules/wss.dll
    .dll windows:6 windows x86 arch:x86

    da6a9c5e00f061899e56da3222efd161


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Runner.exe
    .exe windows:6 windows x86 arch:x86

    d29f5270c56771586b86550cf2fec9f2


    Code Sign

    Headers

    Imports

    Sections

  • msvcp110.dll
    .dll windows:6 windows x86 arch:x86

    098e9eddf1a24b3fd9465ee992148a02


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • msvcr110.dll
    .dll windows:6 windows x86 arch:x86

    e057a95f8936f77238b048f253956b3b


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • uninstall.exe.nsis