Overview

overview

7

Static

static

3

fd133f3cba...18.exe

windows7-x64

7

fd133f3cba...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...ss.dll

windows7-x64

3

$PLUGINSDI...ss.dll

windows10-2004-x64

3

AirCmd.exe

windows7-x64

1

AirCmd.exe

windows10-2004-x64

1

AirDroid.exe

windows7-x64

3

AirDroid.exe

windows10-2004-x64

3

Android.dll

windows7-x64

3

Android.dll

windows10-2004-x64

3

BonjourSetup.exe

windows7-x64

7

BonjourSetup.exe

windows10-2004-x64

7

Helper.exe

windows7-x64

3

Helper.exe

windows10-2004-x64

3

IncludeAdb...pi.dll

windows7-x64

3

IncludeAdb...pi.dll

windows10-2004-x64

3

IncludeAdb...pi.dll

windows7-x64

3

IncludeAdb...pi.dll

windows10-2004-x64

3

IncludeAdb...db.exe

windows7-x64

3

IncludeAdb...db.exe

windows10-2004-x64

3

Launcher.exe

windows7-x64

3

Launcher.exe

windows10-2004-x64

7

Mono.Zeroc...ur.dll

windows7-x64

3

Mono.Zeroc...ur.dll

windows10-2004-x64

3

Mono.Zeroconf.dll

windows7-x64

3

Mono.Zeroconf.dll

windows10-2004-x64

3

NLog.dll

windows7-x64

1

NLog.dll

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    fd133f3cba650c2164a268e5e98ccb15_JaffaCakes118

  • Size

    17.2MB

  • MD5

    fd133f3cba650c2164a268e5e98ccb15

  • SHA1

    8db30dd38aff2b727dbb808894f41c4f3f39a8d4

  • SHA256

    60d0743fdc7d4af62c46957c1c588533f44fcd073e2a36498b6c04e2e365c476

  • SHA512

    68c9afe9304e91ddd68ce94ebc40a2ada84894bee37a1f0601acb71232e860161cb41b4cec6f93611dff8473360435a57130e3684eddb36bc4455d4d89f797f6

  • SSDEEP

    393216:0OrFiojuGzThiEIt1MNx37enQWKtwf1DckIcaix784J8:0iF5uGzsEIWx3yntB4k7HQ

Score
3/10

Malware Config

Signatures

  • Unsigned PE 22 IoCs

    Checks for missing Authenticode signature.

Files

  • fd133f3cba650c2164a268e5e98ccb15_JaffaCakes118
    .exe windows:5 windows x86 arch:x86

    b729b61eb1515fcf7b3e511e4e66258b


    Headers

    Imports

    Sections

  • $PLUGINSDIR/InstallOptions.dll
    .dll windows:5 windows x86 arch:x86

    cd90e33ffbc335413a25300c682c83df


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/LangDLL.dll
    .dll windows:5 windows x86 arch:x86

    e981c0ab92cb1f191bb5e23392e14796


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/ioSpecial.ini
  • $PLUGINSDIR/modern-wizard.bmp
  • $PLUGINSDIR/nsProcess.dll
    .dll windows:5 windows x86 arch:x86

    439074d1c01f7b16781bdf060930814a


    Headers

    Imports

    Exports

    Sections

  • AirCmd.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • AirCmd.exe.config
  • AirDroid.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • AirDroid.exe.config
  • AirIcon/right_button_phone.ico
  • AirLang/de-DE.lang
  • AirLang/en-US.lang
  • AirLang/es-ES.lang
  • AirLang/fr-FR.lang
  • AirLang/it-IT.lang
  • AirLang/ja-JP.lang
  • AirLang/pt-BR.lang
  • AirLang/pt-PT.lang
  • AirLang/ru-RU.lang
  • AirLang/zh-CN.lang
  • AirLang/zh-TW.lang
  • Android.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • BonjourSetup.exe
    .exe windows:4 windows x86 arch:x86

    a3fb554dab02eb7ec8531725424af7f8


    Code Sign

    Headers

    Imports

    Sections

  • Helper.exe
    .exe windows:4 windows x86 arch:x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • IncludeAdb/AdbWinApi.dll
    .dll windows:6 windows x86 arch:x86

    c64cac39044626770353879245ea25e4


    Headers

    Imports

    Exports

    Sections

  • IncludeAdb/AdbWinUsbApi.dll
    .dll windows:6 windows x86 arch:x86

    fda9f9f5f569ddd0dbf3ad8a275a2eb8


    Headers

    Imports

    Exports

    Sections

  • IncludeAdb/AirDroid_adb.exe
    .exe windows:4 windows x86 arch:x86

    879e62881b452fa51161345afb04a6de


    Headers

    Imports

    Sections

  • IncludeAdb/adb_usb.ini
  • IncludeAdb/vendors.ini
  • Launcher.exe
    .exe windows:4 windows x86 arch:x86

    9caef95c5a17232d94010e9ea54902ea


    Headers

    Imports

    Sections

  • Mono.Zeroconf.Providers.Bonjour.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Mono.Zeroconf.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • NLog.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • Plugins/AirContextMenu_3_1_5.dll
    .dll windows:4 windows x86 arch:x86

    dae02f32a21e03ce65412f6e56942daa


    Headers

    Imports

    Sections

  • System.Data.SQLite.dll
    .dll windows:5 windows x86 arch:x86

    331fdb7a6b0a87069bdab47a40418f92


    Headers

    Imports

    Exports

    Sections

  • biz.dll
  • ffmpeg.dll
    .dll windows:5 windows x86 arch:x86

    0a6be80044fd7365abf1af3dc36bd576


    Headers

    Imports

    Exports

    Sections

  • ffmpeg.exe
    .exe windows:5 windows x86 arch:x86

    087c6a71a0448b1b0c0d50769350f6a2


    Headers

    Imports

    Sections

  • uninst.exe
    .exe windows:5 windows x86 arch:x86

    b729b61eb1515fcf7b3e511e4e66258b


    Headers

    Imports

    Sections

  • $PLUGINSDIR/StdUtils.dll
    .dll windows:5 windows x86 arch:x86

    a5990310be36f8d37e9729deda849797


    Headers

    Imports

    Exports

    Sections

  • $PLUGINSDIR/nsProcess.dll
    .dll windows:5 windows x86 arch:x86

    439074d1c01f7b16781bdf060930814a


    Headers

    Imports

    Exports

    Sections